search

worawit / CVE-2021-3156

Sudo Baron Samedit Exploit
BSD 3-Clause "New" or "Revised" License
737 stars 168 forks source link

About Ubuntu 14.04 or 16.04 without tcache. #1

Closed greg-workspace closed 3 years ago

greg-workspace commented 3 years ago

In the exploit code: exploit_nss_u14.py or exploit_nss_u16.py, you wrote "the glibc with tcache" in the beginning comment. However, In the README.md, you wrote "For Linux distribution that glibc has no tcache support". Which one is typo? By the way, can you tell me the glibc version that you tested of Ubuntu 14.04 and 16.04? Thanks for your sharing.

#!/usr/bin/python
'''
Exploit for CVE-2021-3156 on Ubuntu 16.04 by sleepya
This exploit requires:
- glibc with tcache
For Linux distribution that glibc has no tcache support:

if a target is Debian 9, Ubuntu 16.04, or Ubuntu 14.04, try exploit_nss_xxx.py for specific version first
worawit commented 3 years ago

Fixed. Thanks for reporting. They are old glibc so no tcache. I cannot rememver exact version.

You can get glibc version from "ldd --version" command. You can also check glibc version from distrowatch.