Serious flaw Dirty COW on 5,000 Linux systems in Vietnam

Security Level: High

In mid-October, a 9-year-old serious flaw on the kernel of Linux operating system was discovered. Named Dirty COW, the flaw affects all Linux system from version 2.6.22. According to Bkav, Vietnam now has 5,058 affected systems including important services such as FTP Server and Webserver.

Dirty COW is cataloged a privilege escalation vulnerabilitiy. Exploiting successfully Dirty COW, a hacker with an user account (limited right) can escalate to admin on the system. In  attacks, Dirty COW can be combined with several common errors such as SQL injection, Buffer Overflow... to take full control of the victim system with the highest authority (root, system ...).

Bkav provides testing tool combined patch update at link:

Users and system administrators should download the tool and run the command [python DirtyCOW] to fix the problem as soon as possible. The tool will automatically check whether the system has vulnerabilities or not and patch it (system required Python installation).


You can learn more about different severity levels