CVE-2018-8897 PoC — 多个厂商的操作系统竞争条件问题漏洞

Source

https://github.com/nmulasmajic/syscall_exploit_CVE-2018-8897

Associated Vulnerability

Title:多个厂商的操作系统竞争条件问题漏洞 (CVE-2018-8897)
Description:Linux kernel是美国等都是美国Linux(Linux)基金会的产品。Linux kernel是开源操作系统Linux所使用的内核。Qualcomm Kernel等都是美国高通(Qualcomm)公司的产品。Qualcomm Kernel是一个使用在高通产品中的内核组件。Apple Kernel等都是美国苹果(Apple)公司的产品。Apple Kernel是Apple设备的内核。多个厂商的操作系统中存在竞争条件问题漏洞。该漏洞源于网络系统或产品在运行过程中，并发代码需要互斥地访问共享资源时，对

Description

Implements the POP/MOV SS (CVE-2018-8897) vulnerability by leveraging SYSCALL to perform a local privilege escalation (LPE).

File Snapshot


 [4.0K]  /data/pocs/70ec504ac05f3e3abea57f38d3cd5a42a13d6d3b
├── [1.5K]  arch.h
├── [5.3K]  asm.asm
├── [ 589]  asm.h
├── [2.1K]  io.cpp
├── [ 408]  io.h
├── [2.1K]  mm.cpp
├── [ 497]  mm.h
├── [9.4K]  movss_popss.cpp
├── [1.9K]  movss_popss.h
├── [1.4K]  ntint.cpp
├── [2.6K]  ntint.h
├── [4.1K]  ps.cpp
├── [ 276]  ps.h
├── [ 583]  singleton.hpp
├── [ 238]  stdafx.cpp
├── [ 557]  stdafx.h
├── [7.7K]  symbols.cpp
├── [5.4K]  symbols.hpp
├── [1.1K]  syscall_exploit.sln
├── [9.9K]  syscall_exploit.vcxproj
└── [2.5K]  syscall_exploit.vcxproj.filters

0 directories, 21 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!