Privilege Escalation via Inherited File Descriptor in LXC

Privilege Escalation via Inherited File Descriptor in LXC

CVE-2016-8649 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /proc, to access the rest of the host's filesystem via the openat() family of syscalls.

Learn more about our Web Application Penetration Testing UK.