NOMISEC-sa-infinity8888/Dirty-Pipe-CVE-2022-0847

NOMISEC WORKING POC
Exploit for CVE-2022-0847 - Dirty Pipe Local Privilege Escalation via CVE-2022-0847
AI Analysis

This is a working proof-of-concept exploit for CVE-2022-0847 (Dirty Pipe), which allows arbitrary file overwrite by leveraging an uninitialized pipe_buffer.flags variable in the Linux kernel. The exploit modifies /etc/passwd to escalate privileges by injecting a password for the root user.

Attack Type
LPE
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1068 - Exploitation for Privilege Escalation T1555 - Credentials from Password Stores
Loading exploit code...
Download ZIP Password: eip
Source
Platform Nomisec
Type poc
Files 2
Stars 3
Forks 1
Last Push Mar 13, 2022
Authors
sa-infinity8888 Max Kellermann
Vulnerability
CVE-2022-0847
Dirty Pipe Local Privilege Escalation via CVE-2022-0847
HIGH KEV
CVSS 7.8