CVE-2020-28169 PoC — Kenhys Td Agent Builder 权限许可和访问控制问题漏洞

Source

https://github.com/zubrahzz/FluentD-TD-agent-Exploit-CVE-2020-28169

Associated Vulnerability

Title:Kenhys Td Agent Builder 权限许可和访问控制问题漏洞 (CVE-2020-28169)
Description:Kenhys Td Agent Builder是Kenhys个人开发者的一个基于Ruby的用于收集各种类型日志信息的软件。 Fluentd td-agent-builder plugin before 2020-12-18 存在安全漏洞，该漏洞允许攻击者可利用该漏洞获得特权，因为bin目录是由用户帐户可写的，但bin中的文件是作为NT权限系统执行的。

Description

Insecure Folder permission that lead to privilege escalation

Readme

# FluentD-TD-agent-WindowsExploit <V4.0.1 CVE-2020-28169
Insecure Folder permission that leads to privilege escalation
Download URL:
https://td-agent-package-browser.herokuapp.com/4/windows

File Snapshot


 [4.0K]  /data/pocs/5cc039db2c06845c6b8af86ad97b226f7d183f7a
├── [330K]  FluentD-TdAgent Windows POC.doc
└── [ 191]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!