cve/CVE-2016-4997.md at 694ac234a19db48cd3b1f78eb5f461ab1f6c99f7

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio d6bcaa53f2 Update CVE sources 2024-07-25 21:25

2024-07-25 21:25:12 +00:00

Description

The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-container root access to provide a crafted offset value that triggers an unintended decrement.

POC

Reference

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinoct2016-3090547.html
https://www.exploit-db.com/exploits/40435/
https://www.exploit-db.com/exploits/40489/

Github

https://github.com/HaxorSecInfec/autoroot.sh
https://github.com/JlSakuya/Linux-Privilege-Escalation-Exploits
https://github.com/a-roshbaik/Linux-Privilege-Escalation-Exploits

1.1 KiB Raw Blame History

CVE-2016-4997

Description

POC

Reference

Github

1.1 KiB

Raw Blame History