unix-privesc-check Update: v1.4

The next version of unix-privesc-check has just been released.  Download it here. This version checks the file permissions of SUID programs.  It should catch issue like the recent Ingres privesc where and SUID programs used a shared object file that could be modified by a non-root user.

unix-privesc-check Update: v1.3

I just updated unix-privesc-check.  Download it here. This release fixes a couple of minor bugs in the reporting of cron-related issues and some problem while running under /bin/sh (as opposed to /bin/bash).

Unix-privesc-check Update: v1.2

I’ve just released version 1.2 of unix-privesc-check.  Download it here. The following improvements have been made over version 1.1: * Added check of library dirs (/etc/ld.so.conf) for Linux * Crude check of programs called from shell scripts * Check of libraries used by each binary program (using ldd) * Check of hard-coded paths within binaries […]

Unix-privesc-check Update: v1.1

Minor update to unix-privesc-check.   Added check for accounts with no password in /etc/passwd  Record some basic info about the host (hostname, uname -a, interface IPs)  


Unix-privesc-checker is a script that runs on Unix systems (tested on Solaris 9, HPUX 11, Various Linuxes, FreeBSD 6.2).  It tries to find misconfigurations that could allow local unprivilged users to escalate privileges to other users or to access local apps (e.g. databases). It is written as a single shell script so it can be […]