Hacking Auto-GPT and escaping its docker container
Date : 2023-06-29
Abstract
- We showcase an attack which leverages indirect prompt injection to trick Auto-GPT into executing arbitrary code when it is asked to perform a seemingly harmless task such as text summarization on an attacker controlled website
- In the default non continuous mode, users are prompted to review and approve commands before they are executed by Auto-GPT. We found that an attacker could inject color-coded messages into the console (fixed in v0.4.3) or benefit from the built-in unreliable statements about future planned actions to obtain user approval for malicious commands
- Self-built versions of the Auto-GPT docker image were susceptible to a trivial docker escape to the host system with the minimal user interaction of restarting the Auto-GPT docker after it is terminated by our malicious code (fixed in v0.4.3)
- The non-docker versions v0.4.1 and v0.4.2 also allowed custom python code to execute outside of its intended sandboxing via a path traversal exploit after a restart of Auto-GPT
Read blog post here
Recently on :
Artificial Intelligence
Security | Surveillance | Privacy
PITTI - 2024-09-19
A bubble in AI?
Bubble or true technological revolution? While the path forward isn't without obstacles, the value being created by AI extends ...
PITTI - 2024-09-08
Artificial Intelligence : what everyone can agree on
Artificial Intelligence is a divisive subject that sparks numerous debates about both its potential and its limitations. Howeve...
WEB - 2024-03-04
Nvidia bans using translation layers for CUDA software | Tom's Hardware
Tom's Hardware - Nvidia has banned running CUDA-based software on other hardware platforms using translation layers in its lice...
WEB - 2024-02-21
Retell AI : conversational speech engine
Retell tackle the challenge of real time conversations with voice AI.
WEB - 2024-02-21
Groq Inference Tokenomics: Speed, But At What Cost? | Semianalysis
Semianalysis - Groq, an AI hardware startup, has been making waves with their impressive demos showcasing Mistral Mixtral 8x7b ...