ABRT sosreport Privilege Escalation

Posted by deepcore on September 25, 2019 – 6:01 am

This Metasploit module attempts to gain root privileges on RHEL systems with a vulnerable version of Automatic Bug Reporting Tool (ABRT) configured as the crash handler. sosreport uses an insecure temporary directory, allowing local users to write to arbitrary files (CVE-2015-5287). This module has been tested successfully on abrt 2.1.11-12.el7 on RHEL 7.0 x86_64 and abrt 2.1.11-19.el7 on RHEL 7.1 x86_64.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« vBulletin 5.x Pre-Auth Remote Code Execution Microsoft SharePoint 2013 SP1 Cross Site Scripting »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

ABRT sosreport Privilege Escalation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL