search

The-Z-Labs / linux-exploit-suggester

Linux privilege escalation auditing tool
GNU General Public License v3.0
5.63k stars 1.1k forks source link

[Suggestion] Alternative exploit for CVE-2017-1000112 #16

Closed bcoles closed 6 years ago

bcoles commented 6 years ago

https://github.com/bcoles/kernel-exploits/blob/cve-2017-1000112/CVE-2017-1000112/poc.c

I'm maintaining an updated exploit in the cve-2017-1000112 branch of my fork of xairy's exploit.

I've added new offsets, new KASLR bypasses, support for Linux Mint distros (17 and 18), and networking support for post-exploitation.

I'm not sure if you want to trust my code; and Xairy should get the credit. Perhaps the alternate link could be added to the comments, rather than replacing the existing src-url ?

mzet- commented 6 years ago

Ok, cool!

I've handled it by adding 'ext-url' field which points to extended (yours) version of the exploit.