CVE-2021-3156

Root shell PoC for CVE-2021-3156 (no bruteforce)

For educational purposes etc.

Tested on Ubuntu 20.04 against sudo 1.8.31

All research credit: Qualys Research Team Check out the details on their blog.

You can check your version of sudo is vulnerable with: $ sudoedit -s Y. If it asks for your password it's most likely vulnerable, if it prints usage information it isn't. You can downgrade to the vulnerable version on Ubuntu 20.04 for testing purposes with $ sudo apt install sudo=1.8.31-1ubuntu1

Usage

$ make

$ ./exploit

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commits
Makefile		Makefile
README.md		README.md
exploit.c		exploit.c
shellcode.c		shellcode.c

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Makefile

Makefile

README.md

README.md

exploit.c

exploit.c

shellcode.c

shellcode.c

Repository files navigation

CVE-2021-3156

Root shell PoC for CVE-2021-3156 (no bruteforce)

Usage

About

Releases

Packages

Languages

kldksd/server

Folders and files

Latest commit

History

Repository files navigation

CVE-2021-3156

Root shell PoC for CVE-2021-3156 (no bruteforce)

Usage

About

Resources

Stars

Watchers

Forks

Languages