CVE-2015-1328

EPSS 37.7%

The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem directory, which allows local users to obtain root access by leveraging a configuration in which overlayfs is permitted in an arbitrary mount namespace.

Affected products

n/a · n/a

public PoCs found — 13

githubgithub.com/elit3pwner/CVE-2015-1328-GoldenEye★ 10 githubgithub.com/0xf1d0/CVE-2015-1328★ 1 githubgithub.com/SR7-HACKING/LINUX-VULNERABILITY-CVE-2015-1328★ 0 githubgithub.com/notlikethis/CVE-2015-1328★ 0 githubgithub.com/saqib-butt2/blackbox-pentesting-infsecos★ 0 githubgithub.com/BlackFrog-hub/cve-2015-1328★ 0 githubgithub.com/YastrebX/CVE-2015-1328★ 0 githubgithub.com/thieveshkar/RootQuest-CTF-Box-Multi-Stage-Exploitation-VM★ 0 exploitdbwww.exploit-db.com/exploits/37293unverified cve_referencewww.exploit-db.com/exploits/40688/unverified exploitdbwww.exploit-db.com/exploits/40688unverified exploitdbwww.exploit-db.com/exploits/37292unverified cve_referencewww.exploit-db.com/exploits/37292/unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://seclists.org/oss-sec/2015/q2/717 https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-1328.html https://security-tracker.debian.org/tracker/CVE-2015-1328 https://www.exploit-db.com/exploits/37292/http://www.exploit-db.com/exploits/40688/http://www.securityfocus.com/bid/75206