CVE 2021 3493 Save

CVE-2021-3493 Ubuntu OverlayFS Local Privesc (Interactive Bash Shell & Execute Command Entered)

Project README

CVE-2021-3493

sample

Ubuntu OverlayFS Local Privesc

Description

"Ubuntu specific issue in the overlayfs file system in the Linux kernel where it did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this to gain elevated privileges, due to a patch carried in Ubuntu to allow unprivileged overlayfs mounts." - Ubuntu Security

Fixed in Linux 5.11

Affected Versions

Ubuntu 20.10
Ubuntu 20.04 LTS
Ubuntu 19.04 LTS
Ubuntu 18.04 LTS
Ubuntu 16.04 LTS
Ubuntu 14.04 ESM

checklist: https://ubuntu.com/security/CVE-2021-3493

Usage

gcc exploit.c -o exploit
chmod +x exploit
./exploit shell|command

References

https://github.com/briskets/CVE-2021-3493

Open Source Agenda is not affiliated with "CVE 2021 3493" Project. README Source: inspiringz/CVE-2021-3493

Stars

Open Issues

Last Commit

2 years ago

Repository

inspiringz/CVE-2021-3493

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/cve-2021-3493"><img src="https://www.opensourceagenda.com/projects/cve-2021-3493/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022