CVE-2013-6282

This Metasploit module exploits CVE-2013-6282, a missing check in the get_user and put_user API functions in the Linux kernel before 3.5.5. It reads kernel memory to locate commit_creds and ptmx_fops addresses, then writes shellcode to execute as uid 0.

This exploit leverages CVE-2013-6282, a vulnerability in the Android Binder driver, to achieve local privilege escalation by overwriting the system call table and executing a shellcode payload that modifies process credentials.

This exploit leverages a vulnerability in the Linux kernel's `put_user` function to write arbitrary values to kernel memory addresses. It uses pipe operations and `ioctl` with `FIONREAD` to achieve this, potentially allowing privilege escalation or other kernel-level manipulations.

This is a working privilege escalation exploit for CVE-2013-6282, targeting Android kernel vulnerabilities via /dev/ptmx manipulation. It dumps kernel memory to locate symbols and overwrites credentials to gain root access.

This PoC exploits CVE-2013-6282 to bypass kernel module signing enforcement on specific Samsung devices by patching kernel memory via ptrace. It allows unsigned kernel modules to be loaded.

This exploit leverages CVE-2013-6282 to read kernel memory by abusing the IP_TTL socket option in the Linux kernel. It uses setsockopt and getsockopt to read arbitrary memory addresses, demonstrating an information leak vulnerability.

This Metasploit module exploits CVE-2013-6282, a missing check in the get_user/put_user API functions in the Linux kernel before 3.5.5, allowing unprivileged users to read/write kernel memory. It leverages this to execute shellcode as root by reading kernel memory to locate commit_creds and ptmx_fops addresses.