VDB
ALAS2-2022-1745
ALAS2-2022-1745
PUBLISHED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | polkit |
Exploit Intelligence
- El exploit para obtener root usado la vulnerabilidad del CVE-2021-4034 o tambien llamado PwnKit el cual permite teniendo un shell hacer una escalada de privilegios siempre y cuando la version de pkexec sea = o < que la v0.105 (github-poc-repo)
- El exploit para obtener root usado la vulnerabilidad del CVE-2021-4034 o tambien llamado PwnKit el cual permite teniendo un shell hacer una escalada de privilegios siempre y cuando la version de pkexec sea = o < que la v0.105 (github-poc)
- usmansec/-CVE-2021-4034 (github-poc-repo)
- usmansec/-CVE-2021-4034 (github-poc)
- PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec in Python (github-poc)
- Advanced Linux Privilege Escalation research on CVE-2021-4034 (PwnKit). Features an optimized exploit with 7 polymorphic payload modes (Interactive Shell, Backdoor, User Creation, Reverse Shell, etc). Portfolio piece focused on memory corruption logic, environment variable manipulation, and anti-forensic techniques. (github-poc-repo)
- Advanced Linux Privilege Escalation research on CVE-2021-4034 (PwnKit). Features an optimized exploit with 7 polymorphic payload modes (Interactive Shell, Backdoor, User Creation, Reverse Shell, etc). Portfolio piece focused on memory corruption logic, environment variable manipulation, and anti-forensic techniques. (github-poc)
- Leemyunglyul/cve-2021-4034-mock (github-poc-repo)
- Leemyunglyul/cve-2021-4034-mock (github-poc)
- PoC for PwnKit / CVE-2021-4034 - Pkexec Local Privilege Escalation (github-poc-repo)
…and 143 more exploits
Timeline
- Jan 27, 2022 CVE Published
References
- ALAS2-2022-1745: polkit (important) advisory