CVE-2021-3156 PoC — Sudo 缓冲区错误漏洞

Source

https://github.com/freeFV/CVE-2021-3156

Associated Vulnerability

Title:Sudo 缓冲区错误漏洞 (CVE-2021-3156)
Description:Sudo是一款使用于类Unix系统的，允许用户通过安全的方式使用特殊的权限执行命令的程序。 Sudo 1.9.5p2 之前版本存在缓冲区错误漏洞，攻击者可使用sudoedit -s和一个以单个反斜杠字符结束的命令行参数升级到root。

File Snapshot


 [4.0K]  /data/pocs/a9c833c2e794b807ad078014af8e6db4412565f6
├── [1.3K]  All_Linux_upgrade-Sudo_for-cve-2021-3156-repaire.sh
├── [4.0K]  CVE-2021-3156_fuzzy
│   ├── [1.5K]  CVE-2021-3156_fuzzy.py
│   └── [   4]  requirements.txt
├── [8.7K]  CVE-2021-3156-POC.sh
├── [4.0K]  exploit
│   ├── [ 814]  call.c
│   └── [  58]  exploit.c
└── [3.8M]  sudo-1.9.5p2.tar.gz

2 directories, 7 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-3156 PoC — Sudo 缓冲区错误漏洞

Source

Associated Vulnerability

File Snapshot

Remarks