CVE-2014-0038

This Metasploit module exploits CVE-2014-0038, a Linux kernel privilege escalation vulnerability in the recvmmsg system call. It targets specific Ubuntu 13.x kernels (3.8.0-19, 3.11.0-12, 3.11.0-15) by manipulating a timeout pointer to gain root access.

This exploit leverages CVE-2014-0038, a vulnerability in the Linux kernel's recvmmsg system call in x32 ABI, to achieve local privilege escalation by corrupting kernel memory and overwriting a function pointer to execute arbitrary code with root privileges.

This exploit leverages CVE-2014-0038, a vulnerability in the X86_X32 recvmmsg syscall that allows arbitrary kernel memory writes. It targets the ptmx_fops release function pointer to achieve local privilege escalation by overwriting it with a user-controlled payload.

This PoC exploits a bug in the Linux kernel's x32 compat layer for recvmmsg, causing a denial-of-service by triggering a kernel crash. It binds a UDP socket and calls recvmmsg with a malformed timeout parameter to trigger the vulnerability.

This is a local privilege escalation exploit for CVE-2014-0038, targeting the X86_X32 recvmmsg syscall vulnerability. It manipulates kernel memory to overwrite the release function pointer of the ptmx_fops structure, leading to root privileges.

This repository contains a functional local privilege escalation exploit for CVE-2014-0038, targeting the X86_X32 recvmmsg syscall vulnerability in the Linux kernel. The exploit manipulates the ptmx_fops structure to achieve root privileges by overwriting kernel memory.

This repository contains a writeup explaining the exploitation of CVE-2014-0038, a vulnerability in the Linux kernel. The README.md file describes the process with screenshots but does not include actual exploit code.

This Metasploit module exploits CVE-2014-0038, a Linux kernel privilege escalation vulnerability via a crafted recvmmsg system call with a manipulated timeout pointer. It supports specific Ubuntu 13.x kernels and may take up to 13 minutes to execute due to a decrementing pointer.