Skip to content

lockedbyte/CVE-Exploits

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

55 Commits

CVE-2019-18634

CVE-2019-18634

 
 

CVE-2020-28018

CVE-2020-28018

 
 

CVE-2020-9273

CVE-2020-9273

 
 

CVE-2021-3156

CVE-2021-3156

 
 

jad_1.5.8e_oob_write

jad_1.5.8e_oob_write

 
 

README.md

README.md

 
 

Repository files navigation

CVE Exploit PoC's

PoC exploits for multiple software vulnerabilities.

Current exploits

  • CVE-2019-18634 (LPE): Stack-based buffer overflow in sudo tgetpass.c when pwfeedback module is enabled
  • CVE-2021-3156 (LPE): Heap-based buffer overflow in sudo sudoers.c when an argv ends with backslash character.
  • CVE-2020-28018 (RCE): Exim Use-After-Free (UAF) in tls-openssl.c leading to Remote Code Execution
  • CVE-2020-9273 (RCE): ProFTPd Use-After-Free (UAF) leading to Post-Auth Remote Code Execution
  • jad OOB write (CE): JAD out-of-bounds write leading to code execution (No CVE given yet)

About

PoC exploits for software vulnerabilities

Resources

Readme
Activity

Stars

670 stars

Watchers

33 watching

Forks

160 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages