CVE-2015-1338

Apport < 2.19 - Denial of Service and Privilege Escalation via Symlink Attack on vmcore.log

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-1338. PoCs published by halfdog.

AI-analyzed exploit summary The writeup describes a vulnerability in Ubuntu Vivid's apport kernel crash dump handling, where insecure file operations in /var/crash/ allow local privilege escalation or DoS due to lack of O_EXCL/O_NOFOLLOW flags. The PoC is referenced but not included in the provided text.

Description

kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.log.

Exploits (1)

exploitdb WRITEUP

by halfdog · textlocallinux

https://www.exploit-db.com/exploits/38353

View Code ZIP pw:eip

The writeup describes a vulnerability in Ubuntu Vivid's apport kernel crash dump handling, where insecure file operations in /var/crash/ allow local privilege escalation or DoS due to lack of O_EXCL/O_NOFOLLOW flags. The PoC is referenced but not included in the provided text.

Classification

Writeup 90%

Attack Type

Lpe | Dos

Complexity

Moderate

Reliability

Theoretical

Target: Ubuntu Vivid (apport kernel_crashdump)

No auth needed

Prerequisites: Local access to the system · Write access to /var/crash/

MITRE ATT&CK