Pi-Hole Remove Commands Linux Privilege Escalation

Posted by deepcore on July 31, 2021 – 6:16 am

Pi-Hole versions 3.0 through 5.3 allows for command line input to the removecustomcname, removecustomdns, and removestaticdhcp functions without properly validating the parameters before passing to sed. When executed as the www-data user, this allows for a privilege escalation to root since www-data is in the sudoers.d/pihole file with no password.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« http://korat7.go.th/hi.htm Panasonic Sanyo CCTV Network Camera 2.03-0x Cross Site Request Forgery »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Pi-Hole Remove Commands Linux Privilege Escalation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL