https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
I’m on a linux VM now and yep, there’s pkexec…
“iconv_open() executes small shared libraries…”
“Unfortunately, CVE-2021-4034 allows us to re-introduce GCONV_PATH into
pkexec’s environment, and to execute our own shared library, as root.”
Shouldn’t be long before we see a lot of demonstrations for this.
Simple-Security 