Add blueman set_dhcp_handler d-bus privesc (CVE-2015-8612)

The-Z-Labs / linux-exploit-suggester

Linux privilege escalation auditing tool

GNU General Public License v3.0

5.56k stars 1.09k forks source link

Add blueman set_dhcp_handler d-bus privesc (CVE-2015-8612) #42

Closed bcoles closed 5 years ago

bcoles commented 5 years ago

Add blueman set_dhcp_handler d-bus privesc (CVE-2015-8612)

There's no "exploit" for this bug. The PoC fits in a tweet (analysis-url).

Unfortunately, I haven't found any way to link directly to raw tweet content (without an API key).

The exploit-db: 46186 ID is for the Metasploit module.

The PoC is small and "just works". It's hard to justify writing a separate exploit for it.

zero77 commented 5 years ago

@bcoles

Unfortunately, I haven't found any way to link directly to raw tweet content (without an API key). The PoC is small and "just works". It's hard to justify writing a separate exploit for it.

If so, would it be worth adding it to github or to pastebin where you can just use wget and then run it.

zero77 commented 5 years ago

or https://cxsecurity.com/issue/WLB-2019010170

bcoles commented 5 years ago

or https://cxsecurity.com/issue/WLB-2019010170

That's the same as the metasploit module, which is already linked as EDB 46186.