Exploitation Summary
EIP tracks 3 public exploits for CVE-2014-2533.
PoCs published by Metasploit, cenobyte, cenobyte, Tim Brown, bcoles, including Metasploit module exploits/qnx/local/ifwatchd_priv_esc.
AI-analyzed exploit summary This Metasploit module exploits a privilege escalation vulnerability in QNX's ifwatchd (CVE-2014-2533) by leveraging its failure to drop privileges when executing user-supplied scripts via the '-A' argument. It writes a malicious script to a writable directory and triggers it using ifwatchd, resulting in arbitrary command execution as root.
Description
/sbin/ifwatchd in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to gain privileges by providing an arbitrary program name as a command-line argument.
Exploits (3)
This Metasploit module exploits a privilege escalation vulnerability in QNX's ifwatchd (CVE-2014-2533) by leveraging its failure to drop privileges when executing user-supplied scripts via the '-A' argument. It writes a malicious script to a writable directory and triggers it using ifwatchd, resulting in arbitrary command execution as root.
This exploit leverages a privilege escalation vulnerability in QNX's ifwatchd service, which executes user-supplied scripts with root privileges. The script creates a malicious arrival-script that spawns a setuid root shell, then triggers it via ifwatchd.
This Metasploit module exploits a privilege escalation vulnerability in QNX's ifwatchd SUID executable by leveraging the '-A' argument to execute arbitrary commands as root. It writes a malicious script to a writable directory and triggers it via ifwatchd.