CVE-2012-0055

HIGH

Linux Kernel < 3.0.0 - Missing Authorization in OverlayFS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-0055. PoCs published by Gary Poster.

AI-analyzed exploit summary This exploit leverages a local security-bypass vulnerability in OverlayFS (CVE-2012-0055) by manipulating cgroup device restrictions to bypass security policies. It demonstrates unauthorized device access via overlay mounts and cgroup configurations.

Description

OverlayFS in the Linux kernel before 3.0.0-16.28, as used in Ubuntu 10.0.4 LTS and 11.10, is missing inode security checks which could allow attackers to bypass security restrictions and perform unauthorized actions.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Gary Poster · bashlocallinux

https://www.exploit-db.com/exploits/36571

View Code ZIP pw:eip

This exploit leverages a local security-bypass vulnerability in OverlayFS (CVE-2012-0055) by manipulating cgroup device restrictions to bypass security policies. It demonstrates unauthorized device access via overlay mounts and cgroup configurations.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Linux Kernel (OverlayFS)

Auth required

Prerequisites: Local access to the system · Ability to create cgroups and mount overlay filesystems

MITRE ATT&CK