CVE-2015-1318

This Metasploit module exploits CVE-2015-1318, a privilege escalation vulnerability in Apport (Ubuntu) and ABRT (Fedora) due to improper handling of chroot environments in crash handlers. It uploads and executes a precompiled exploit (newpid) to gain root privileges and then executes a payload.

This exploit leverages a vulnerability in Apport (CVE-2015-1318) to achieve local privilege escalation by manipulating the mount namespace and pivot_root to gain root access. It uses LXC tools to create an isolated environment and copies a SUID root shell to /tmp/pwned.

This exploit leverages CVE-2015-1318, a vulnerability in Apport's handling of crashes in user namespaces, to achieve local privilege escalation (LPE) by manipulating directory structures and hardlinks to execute arbitrary code as root.

This exploit leverages a vulnerability in Apport/Abrt (CVE-2015-1318) by creating a chroot environment with hard links to the exploit binary, then triggering a core dump to execute the binary with elevated privileges. It uses namespace isolation (CLONE_NEWPID | CLONE_NEWUSER) to bypass security checks.

This Metasploit module exploits a privilege escalation vulnerability in Apport (CVE-2015-1318) by leveraging a chroot-based coredump handler to execute arbitrary code as root. It uploads and executes a precompiled exploit binary to achieve local privilege escalation on vulnerable Ubuntu or Fedora systems.