CVE-2017-7184 PoC — Linux kernel 权限许可和访问控制问题漏洞

Source

https://github.com/b1nhack/CVE-2017-7184

Associated Vulnerability

Title:Linux kernel 权限许可和访问控制问题漏洞 (CVE-2017-7184)
Description:Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 4.10.6及之前的版本中的net/xfrm/xfrm_user.c文件的‘xfrm_replay_verify_len’函数存在权限许可和访问控制漏洞。本地攻击者可利用该漏洞获取root权限或造成拒绝服务（基于堆的越边界访问）。

Description

CVE-2017-7184 exp

File Snapshot


 [4.0K]  /data/pocs/e492d104c618fc97b47632bcf08f5ce9dc26ddf4
├── [ 117]  bash.c
├── [7.6K]  exp.c
├── [1.0K]  LICENSE
├── [ 164]  Makefile
└── [ 360]  run.sh

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!