Skip to content

githublihaha/DirtyPIPE-CVE-2022-0847

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.assets
README.assets
 
 
README.md
README.md
 
 
dirty.c
dirty.c
 
 

Repository files navigation

CVE-2022-0847 POC

来源:https://www.exploit-db.com/exploits/50808

  1. 编译

    在linux中 gcc -o dirty dirty.c编译POC程序

  2. 使用

    ./dirty SUID执行程序。其中,SUID是指具有SUID的程序的路径

    一般可以用 /usr/bin/passwd,也就是执行./dirty /usr/bin/passwd

    image-20220315163100154

    可以获取root的shell

  3. 可以使用find / -perm /4000查询具有SUID的程序。

    image-20220315164326855

    image-20220315164346358

  4. 别忘了删除 /tmp/sh

    image-20220315165450528

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages