Add support for polkit (CVE-2021-3560)

liamg / traitor

:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

MIT License

6.68k stars 578 forks source link

Add support for polkit (CVE-2021-3560) #35

Closed sa7mon closed 3 years ago

sa7mon commented 3 years ago

@liamg Are you planning on adding support for privesc CVEs? This might be a good one to add since there are so many affected platforms.

liamg commented 3 years ago

Definitely, that would be great!

liamg commented 3 years ago

I have this working locally, though I'd like to get some better checks in place and support exploiting RHEL via packagekit too, I should have a new version out with the exploit in the next day or so.

liamg commented 3 years ago

@sa7mon Thanks for the suggestion, it's now in the latest release :+1: