Ubuntu Overlayfs Local Privilege Escalation

Posted by deepcore on December 4, 2021 – 3:16 am

This Metasploit module exploits a vulnerability in Ubuntu’s implementation of overlayfs. The vulnerability is the result of failing to verify the ability of a user to set the attributes in a running executable. Specifically, when Overlayfs sends the set attributes data to the underlying file system via vfs_setxattr, it fails to first verify the data by calling cap_convert_nscap. This vulnerability was patched by moving the call to cap_convert_nscap into the vfs_setxattr function that sets the attribute, forcing verification every time the vfs_setxattr is called rather than trusting the data was already verified.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« WordPress All-In-One Video Gallery 2.4.9 Local File Inclusion WordPress Slider By Soliloquy 2.6.2 Cross Site Scripting »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Ubuntu Overlayfs Local Privilege Escalation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL