Authors: Hector Marco & Ismael Ripoll -- Cybersecurity Group CVE: CVE-2015-8370 Comment: Grub2 Authentication Bypass 0-Day Dates: December 10 th , 2015 - Disclosed at IX Jornadas STIC CCN-CERT. December 14 th , 2015 - Published in the web. Back to 28 GRUB2 vulnerability Description. Impact. The Vulnerability. The Exploit (PoC). How an APT could use this 0-Day. The Fix. Discussion. A vulnerability in Grub2 has been found. Versions from 1.98 (December, 2009) to 2.02 (December, 2015) are affected. The vulnerability can be exploited under certain circumstances, allowing local attackers to bypass any kind of authentication (plain or hashed passwords). And so, the attacker may take control of the computer. Grub2 is the bootloader used by most Linux systems including some embedded systems. This results in an incalculabl...