Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-7358 PoC — LightDM 路径遍历漏洞

Source
https://github.com/JonPichel/CVE-2017-7358
Associated Vulnerability
Title:LightDM 路径遍历漏洞 (CVE-2017-7358)
Description:LightDM(又名Light Display Manager)是一套Linux桌面的桌面显示管理器,其目的是成为X.org X服务器的标准显示管理器,并包含了跨桌面环境、减少外部依赖的代码库等特性。 LightDM 1.22.0及之前的版本中的debian/guest-account.sh文件存在目录遍历漏洞。本地攻击者可利用该漏洞获取任意目录路径的位置,并将权限提升至root权限。
File Snapshot

 [4.0K]  /data/pocs/be3dea6abac6ee0ba804e4552a1fdfe283ace1f8
├── [ 15K]  41923.txt
├── [4.0K]  bin
│   └── [ 181]  cat
├── [2.9K]  boc.c
├── [3.1K]  boclocal.c
├── [ 555]  clean.sh
├── [ 619]  run.sh
├── [ 284]  shell.c
├── [ 621]  stage1local.sh
├── [ 437]  stage1.sh
└── [  53]  stage2.sh

1 directory, 10 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.