CVE-2015-1862
CVE-2015-1862
The crash reporting feature in Abrt allows local users to gain privileges by leveraging an execve by root after a chroot into a user-specified directory in a namedspaced environment.
Productos afectados
n/a · n/aPoCs públicas encontradas — 7
cve_referencepacketstormsecurity.com/files/131422/Fedora-abrt-Race-Condition.htmlno verificadocve_referencepacketstormsecurity.com/files/131423/Linux-Apport-Abrt-Local-Root-Exploit.htmlno verificadocve_referencepacketstormsecurity.com/files/131429/Abrt-Apport-Race-Condition-Symlink.htmlno verificadocve_referencewww.exploit-db.com/exploits/36746/no verificadocve_referencewww.exploit-db.com/exploits/36747/no verificadoexploitdbwww.exploit-db.com/exploits/36747no verificadoexploitdbwww.exploit-db.com/exploits/36746no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://packetstormsecurity.com/files/131422/Fedora-abrt-Race-Condition.htmlhttp://packetstormsecurity.com/files/131423/Linux-Apport-Abrt-Local-Root-Exploit.htmlhttp://packetstormsecurity.com/files/131429/Abrt-Apport-Race-Condition-Symlink.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=1211223http://seclists.org/fulldisclosure/2015/Apr/34https://github.com/abrt/abrt/pull/810https://www.exploit-db.com/exploits/36746/https://www.exploit-db.com/exploits/36747/http://www.openwall.com/lists/oss-security/2015/04/14/4http://www.securityfocus.com/bid/74263