Lucene search
SAINT CorporationSAINT:C4918A16B528F26790825558E8BF5A72HistoryJun 26, 2015 - 12:00 a.m.
Ubuntu overlayfs privilege elevation
2015-06-2600:00:00
SAINT Corporation
www.saintcorporation.com
21
0.001 Low
EPSS
Percentile
24.9%
Added: 06/26/2015
CVE: CVE-2015-1328
BID: 75206
Background
Overlayfs is a type of file system for Linux which implements a union mount.
Problem
In Ubuntu, overlayfs fails to correctly check file permissions when creating new files in the upper filesystem directory. This can be exploited by an unprivileged user to write arbitrary files, leading to command execution with root privileges.
Resolution
Apply one of the fixes from Ubuntu.
References
<http://seclists.org/oss-sec/2015/q2/717>
Limitations
Exploit works in Ubuntu 12.04, 14.04, 14.10, and 15.04. The kernel must have **CONFIG_USER_NS=y** and overlayfs must have the **FS_USERNS_MOUNT** flag in order for the exploit to succeed. gcc must be installed on the target.
Platforms
Linux
Related
saint
saint
Ubuntu overlayfs privilege elevation
2015-06-26 00:00:00
Ubuntu overlayfs privilege elevation
2015-06-26 00:00:00
Ubuntu overlayfs privilege elevation
2015-06-26 00:00:00
securityvulns
securityvulns
[USN-2647-1] Linux kernel vulnerability
2015-06-21 00:00:00
Linux kernel security vulnerabilities
2015-06-21 00:00:00
nessus
nessus
Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) regression (USN-2644-2)
2015-06-22 00:00:00
Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerability (USN-2644-1)
2015-06-16 00:00:00
Ubuntu 12.04 LTS : linux vulnerability (USN-2640-1)
2015-06-16 00:00:00
cve
cve
CVE-2015-1328
2016-11-28 03:59:00
openvas
openvas
Ubuntu: Security Advisory (USN-2646-2)
2015-06-24 00:00:00
Ubuntu: Security Advisory (USN-2647-1)
2015-09-18 00:00:00
Ubuntu: Security Advisory (USN-2643-2)
2015-06-24 00:00:00
ubuntu
ubuntu
Linux kernel regression
2015-06-21 00:00:00
Linux kernel (Trusty HWE) regression
2015-06-21 00:00:00
Linux kernel (Trusty HWE) vulnerability
2015-06-15 00:00:00
threatpost
threatpost
Ubuntu Patches Privilege-Escalation Bug
2015-06-22 10:16:52
cloudfoundry
cloudfoundry
CVE-2015-1328 - overlayfs privilege escalation | Cloud Foundry
2015-06-17 00:00:00
canvas
canvas
Immunity Canvas: OVERLAYFS
2016-11-28 03:59:00
zdt
zdt
Ubuntu 12.04 / 14.04 / 14.10 / 15.04 overlayfs Local Root Exploit
2015-06-17 00:00:00
Overlayfs Privilege Escalation Exploit
2016-11-02 00:00:00
exploitpack
exploitpack
packetstorm
packetstorm
Ubuntu 12.04 / 14.04 / 14.10 / 15.04 overlayfs Local Root
2015-06-16 00:00:00
Overlayfs Privilege Escalation
2016-11-01 00:00:00
debiancve
debiancve
CVE-2015-1328
2016-11-28 03:59:00
prion
prion
Design/Logic Flaw
2016-11-28 03:59:00
ubuntucve
ubuntucve
CVE-2015-1328
2015-06-15 00:00:00
CVE-2018-6559
2018-10-18 00:00:00
redhatcve
redhatcve
CVE-2015-1328
2015-10-30 10:12:55
exploitdb
exploitdb
mssecure
mssecure
How to proactively defend against Mozi IoT botnet
2021-08-19 18:00:46
metasploit
metasploit
Overlayfs Privilege Escalation
2016-10-05 03:21:53
mmpc
mmpc
How to proactively defend against Mozi IoT botnet
2021-08-19 18:00:46
kitploit
kitploit