关联漏洞
标题:Sudo 安全漏洞 (CVE-2023-22809)Description:Sudo是一款使用于类Unix系统的,允许用户通过安全的方式使用特殊的权限执行命令的程序。 1.9.12p2 之前的 Sudo存在安全漏洞,该漏洞源于sudoedit(又名 -e)功能错误处理用户提供的环境变量(SUDO_EDITOR、VISUAL 和 EDITOR)中传递的额外参数,从而允许本地攻击者将任意条目附加到要处理的文件列表中 . 这可能导致特权升级。
Description
Running this exploit on a vulnerable system allows a local attacker to gain a root shell on the machine.
介绍
# CVE-2023-22809
**CVE-2023-22809** is a critical vulnerability that affects the popular sudo software, specifically the `sudoedit` command. This vulnerability allows an attacker to gain root privileges on a targeted system by exploiting a flaw present in the `sudoedit` command.
Exploiting the **CVE-2023-22809** vulnerability involves passing a specially crafted argument to the `sudoedit` command. This triggers the creation of a new file with root privileges. The attacker can then manipulate the content of this file, providing them with the ability to gain elevated privileges.
Key information about the **CVE-2023-22809** vulnerability includes:
- Severity: Critical
- Affected Product: sudo
- Affected Versions: 1.8.0 through 1.9.12.p1
- Patched Version: 1.9.12.p2
- Exploitability: Remote
- CVSS Score: 9.8
To execute the script that takes advantage of this vulnerability, use the following command:
```
python3 CVE-2023-22809.py
```
It is important to note that exploiting vulnerabilities without proper authorization is both illegal and unethical. This description is provided for educational and general awareness purposes only.
文件快照
[4.0K] /data/pocs/0a812fd66100e1a1218bdb0cc38852b5e1e95cff
├── [2.0K] CVE-2023-22809.py
├── [ 34K] LICENSE
└── [1.1K] README.md
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。