CVE-2018-1000001

This Metasploit module exploits CVE-2018-1000001, a buffer underflow in glibc's realpath() function, to achieve local privilege escalation on Linux systems. It uses the RationalLove exploit to create a SUID root shell, targeting glibc versions 2.23-0ubuntu9 and 2.24-11+deb9u1.

This exploit targets a buffer underflow vulnerability in glibc's realpath() function (CVE-2018-1000001). It uses ASLR-aware techniques and format string manipulation to achieve arbitrary code execution, specifically targeting Debian Stretch, Ubuntu Xenial, and Linux Mint 18.3.

This exploit demonstrates a buffer underflow in glibc's realpath() function, leveraging ASLR-aware techniques to achieve arbitrary code execution. It targets specific Linux distributions (Debian Stretch, Ubuntu Xenial, Linux Mint Sylvia) by exploiting a vulnerability in the umount binary.

This repository contains a proof-of-concept exploit for CVE-2018-1000001, which targets a buffer underflow vulnerability in the `realpath` function in the GNU C Library (glibc). The exploit leverages the vulnerability to achieve local privilege escalation by manipulating the stack and using ROP (Return-Oriented Programming) techniques.

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2018-1000001, targeting a vulnerability in the Linux kernel's USB-MIDI driver. The exploit uses a ROP chain to bypass SMEP and escalate privileges to root, requiring physical access to the machine.

This Metasploit module exploits a buffer underflow in glibc's realpath() function (CVE-2018-1000001) to achieve local privilege escalation on Linux systems with vulnerable glibc versions (2.23-0ubuntu9 and 2.24-11+deb9u1). It requires unprivileged user namespaces to be enabled and compiles or drops a pre-compiled exploit binary to gain root privileges.