Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-6791 PoC — KDE Plasma Workspace 安全漏洞

Source
https://github.com/rarar0/KDE_Vuln
Associated Vulnerability
Title:KDE Plasma Workspace 安全漏洞 (CVE-2018-6791)
Description:KDE Plasma Workspace是KDE社区开发的所有图形环境的总称,是KDE Software Compilation 4(桌面环境的最新系列)的一部分。 KDE Plasma Workspace 5.12.0之前版本中的soliduiserver/deviceserviceaction.cpp文件存在安全漏洞。攻击者可利用该漏洞执行任意命令。
Description
CVE-2018-6791 Troubleshooting
Readme
### Thoughts on KDE vFAT vuln.

#1: The scope isn't as large as I first imagined. 

Most systems are probably updated to newer versions of KDE or are running a different GUI.
I'd have to look at some actual statistics to get a proper number though. 
Getting physical access to a machine is already a job in itself, so having your exploit not work simply because the target machine is running a different GUI than you were expecting seems like a pain.

#2: 11 Character Limit on vFAT Label is frustrating.

After some quick browsing of twitter, reddit, and other forums, I was unable to find a way to bypass this.
Current hypothesis on how to circumvent this would be to use fdisk to edit the label as a different type while keeping the filesystem as vFAT.
Other option would be use NTFS instead, I found one source which said NTFS may have been the original cause of this vuln. (In which case, the label size is much larger)
File Snapshot

 [4.0K]  /data/pocs/a25b792f4b50df968590befd19f7fc12844be66e
├── [ 325]  blah
├── [ 634]  Distro_Listo
└── [ 925]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.