1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Opencontainers CVE-2019-5736 Download

Web Attack: Opencontainers CVE-2019-5736 Download

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary commands with root privileges.

Additional Information

runc is a CLI tool for spawning and running containers according to the OCI specification.

Opencontainers runc is prone to a local command-execution vulnerability because it fails to properly handle a specially-crafted file-descriptor. Specifically, this issue exists in the '/proc/self/exe'. An attacker can exploit this issue to overwrite the host runc binary and obtain root access.

Affected

  • runc through 1.0-rc6 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube