CVE-2016-9949

HIGH

Apport < 2.20.4 - Remote Code Execution via CrashDB Field Evaluation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-9949. PoCs published by Donncha OCearbhaill.

AI-analyzed exploit summary This is a writeup discussing multiple vulnerabilities in Apport, including CVE-2016-9951, which allows arbitrary command execution via the 'Relaunch' action. The text provides context, links to fixes, and encourages responsible disclosure.

Description

An issue was discovered in Apport before 2.20.4. In apport/ui.py, Apport reads the CrashDB field and it then evaluates the field as Python code if it begins with a "{". This allows remote attackers to execute arbitrary Python code.

Exploits (1)

exploitdb WRITEUP

by Donncha OCearbhaill · textlocallinux

https://www.exploit-db.com/exploits/40937

View Code ZIP pw:eip

This is a writeup discussing multiple vulnerabilities in Apport, including CVE-2016-9951, which allows arbitrary command execution via the 'Relaunch' action. The text provides context, links to fixes, and encourages responsible disclosure.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Apport (Ubuntu)

No auth needed

Prerequisites: Access to a vulnerable Apport instance

MITRE ATT&CK