Lucene search
Immunity CanvasDMESG_LEAKHistoryOct 08, 2018 - 10:29 p.m.
Immunity Canvas: DMESG_LEAK
2018-10-0822:29:00
Immunity Canvas
exploitlist.immunityinc.com
546
EPSS
0.001
Percentile
25.0%
| Name | dmesg_leak |
|---|---|
| CVE | CVE-2018-14656 Exploit Pack |
| NOTES: This module gives an unpriviledged user the ability to dump a file from the kernel | |
| memory. A common scenario is to dump the /etc/shadow or kerberos tickets. | |
| Note: This only works for now on Arch Linux with kernels 4.18. | |
| Caveats: | |
| 1. Attacking vmware, vbox or bare metal is absolutely the same, performance wise. | |
| 2. Not all the filesystems are handled. In particular tmpfs or XFS files cannot be leaked. | |
| 3. With this version you can only dump files fitting within a single page (<= 4096 bytes) |
VersionsAffected:
CVE Url: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14656
Repeatability: Infinite
Related
cvelist
cvelist
CVE-2018-14656
2018-10-08 22:00:00
nvd
nvd
CVE-2018-14656
2018-10-08 22:29:00
redhatcve
redhatcve
CVE-2018-14656
2019-12-29 21:41:22
debiancve
debiancve
CVE-2018-14656
2018-10-08 22:29:00
f5
f5
K58729485 : Linux kernel vulnerability CVE-2018-14656
2019-01-22 00:00:00
cve
cve
CVE-2018-14656
2018-10-08 22:29:00
prion
prion
Design/Logic Flaw
2018-10-08 22:29:00
ubuntucve
ubuntucve
CVE-2018-14656
2018-10-08 00:00:00