Lucene search
Ren Kimura1337DAY-ID-29916HistoryMar 01, 2018 - 12:00 a.m.
Linux Kernel - BadIRET Local Privilege Escalation Exploit
2018-03-0100:00:00
Ren Kimura
0day.today
41
0.0004 Low
EPSS
Percentile
0.4%
Exploit for linux platform in category local exploits
# CVE-2014-9322 PoC for Linux kernel
CVE-2014-9322 (a.k.a BadIRET) proof of concept for Linux kernel.
This PoC uses only syscalls not any libraries, like pthread. Threads are implemented using raw Linux syscalls.
[Raw Linux Threads via System Calls](http://nullprogram.com/blog/2015/05/15/)
# Usage
```
$ make
```
**badiret.elf** is an ELF executable.
**badiret.bin** is a raw binary that can be used as payload.
# Reference
[Exploiting βBadIRETβ vulnerability (CVE-2014-9322, Linux kernel privilege escalation)](https://blogs.bromium.com/exploiting-badiret-vulnerability-cve-2014-9322-linux-kernel-privilege-escalation/)
Download: //github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/44205.zip
# 0day.today [2018-03-31] #Related
nessus
nessus
CentOS 7 : kernel (CESA-2014:2010)
2014-12-19 00:00:00
RHEL 6 : kernel (RHSA-2014:2030)
2014-12-23 00:00:00
Oracle Linux 5 : ELSA-2014-2008-1: / kernel (ELSA-2014-20081)
2023-09-07 00:00:00
exploitpack
exploitpack
Linux Kernel 3.17.5 - IRET Instruction #SS Fault Handling Crash (PoC)
2015-03-04 00:00:00
Linux Kernel - BadIRET Local Privilege Escalation
2017-07-24 00:00:00
redhat
redhat
(RHSA-2014:2030) Important: kernel security update
2014-12-22 00:00:00
(RHSA-2014:2008) Important: kernel security update
2014-12-17 00:00:00
(RHSA-2014:1998) Important: kernel-rt security update
2014-12-16 00:00:00
oraclelinux
oraclelinux
kernel security update
2014-12-18 00:00:00
kernel security update
2014-12-18 00:00:00
kernel security update
2014-12-18 00:00:00
centos
centos
kernel, perf, python security update
2014-12-18 17:17:29
kernel security update
2014-12-18 13:03:54
kernel, perf, python security update
2014-12-17 12:13:22
f5
f5
SOL16122 - Linux kernel vulnerability CVE-2014-9322
2015-02-12 00:00:00
K16122 : Linux kernel vulnerability CVE-2014-9322
2015-09-16 00:00:00
securelist
securelist
Hacking microcontroller firmware through a USB
2019-03-21 16:00:02
debiancve
debiancve
CVE-2014-9322
2014-12-17 11:59:00
prion
prion
Design/Logic Flaw
2014-12-17 11:59:00
openvas
openvas
Oracle: Security Advisory (ELSA-2014-2008)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-2010)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2014-2008-1)
2015-10-06 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 09:03:32
android
android
CVE-2014-9322
2016-04-02 00:00:00
ubuntucve
ubuntucve
CVE-2014-9322
2014-12-17 00:00:00
zdt
zdt
Linux Kernel IRET Instruction #SS Fault Handling - Crash PoC
2015-03-05 00:00:00
cve
cve
CVE-2014-9322
2014-12-17 11:59:00
exploitdb
exploitdb
Linux Kernel 3.17.5 - IRET Instruction #SS Fault Handling Crash (PoC)
2015-03-04 00:00:00
Linux Kernel - 'BadIRET' Local Privilege Escalation
2017-07-24 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-01-13 00:00:00
Linux kernel (EC2) vulnerabilities
2015-02-04 00:00:00
Linux kernel (OMAP4) vulnerabilities
2015-01-13 00:00:00
suse
suse
Security update for Linux kernel (important)
2014-12-24 08:05:54
kernel update for Evergreen 11.4 (important)
2014-12-31 11:06:28
Security update for Linux Kernel (important)
2014-12-21 13:12:48
amazon
amazon
Medium: kernel
2014-12-03 22:27:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2015-01-07 18:14:58
Updated kernel-linus packages fix security vulnerabilities
2015-02-19 17:43:07
Updated kernel-vserver packages fix security vulnerabilities
2015-02-19 17:43:07
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2015-01-18 00:00:00
[ MDVSA-2015:027 ] kernel
2015-01-18 00:00:00
androidsecurity
androidsecurity
Nexus Security BulletinβApril 2016
2016-04-04 00:00:00