Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-1000367 PoC — Sudo 输入验证错误漏洞

Source
https://github.com/pucerpocok/sudo_exploit
Associated Vulnerability
Title:Sudo 输入验证错误漏洞 (CVE-2017-1000367)
Description:Sudo是软件开发者Todd C. Miller所研发的一套用于类Unix操作系统下并允许用户通过安全的方式使用特殊的权限执行命令的程序。 Sudo 1.8.20及之前的版本中的‘get_process_ttyname()’函数存在输入验证漏洞。攻击者可利用该漏洞获取信息,执行代码。
Description
own implementation of the  CVE-2017-1000367 sudo privilege escalation vulnerability in python
Readme
# sudo_exploit
own implementation of the  CVE-2017-1000367 sudo privilege escalation vulnerability in python
File Snapshot

 [4.0K]  /data/pocs/67e377d9eb2ac0387dc775384575e01f9743be27
├── [ 109]  README.md
└── [4.0K]  sudo_exploit.py

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.