Exploitation Summary
EIP tracks 28 public exploits for CVE-2019-14287. PoCs published by Mohin Paramasivam, n0w4n, CMNatic. A Nuclei detection template is also available.
AI-analyzed exploit summary This exploit leverages a sudo vulnerability (CVE-2019-14287) where passing `-u#-1` bypasses user ID validation, allowing execution of commands as root. The script automates the process by checking sudo permissions and executing the target binary with the malicious user ID.
Description
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER= logging, for a "sudo -u \#$((0xffffffff))" command.
Exploits (28)
This exploit leverages a sudo vulnerability (CVE-2019-14287) where passing `-u#-1` bypasses user ID validation, allowing execution of commands as root. The script automates the process by checking sudo permissions and executing the target binary with the malicious user ID.
This repository contains a functional exploit script for CVE-2019-14287, a sudo security bypass vulnerability. The script checks for a vulnerable sudo version and attempts to exploit it by running a command as user ID -1, which can lead to privilege escalation.
This repository provides a Dockerized environment to demonstrate CVE-2019-14287, a sudo vulnerability allowing privilege escalation to root. The Dockerfile sets up a vulnerable Ubuntu 18.04 container with a misconfigured sudoers file, enabling exploitation of the flaw.
This repository contains a functional Bash script that exploits CVE-2019-14287, a sudo security bypass vulnerability. The script checks for vulnerable sudo versions and attempts to bypass policy restrictions by invoking sudo with a crafted user ID.
This exploit leverages a sudo vulnerability (CVE-2019-14287) where passing `-u#-1` bypasses user ID validation, allowing execution of commands as root. The PoC automates the process by checking sudo permissions and executing the target binary with the malicious user ID.
This repository provides a Docker container demonstrating CVE-2019-14287, a sudo vulnerability allowing privilege escalation via user ID manipulation. The PoC shows how a non-root user (alice) can execute commands as root by exploiting the '-u#-1' argument.
This repository contains a patch and source code analysis for CVE-2019-14287, a vulnerability in sudo related to environment variable handling. The provided files include patches and modified source code for the sudoers plugin, specifically focusing on the env.c file.
This repository provides a GUI-based tool for detecting, mitigating, and verifying protection against CVE-2019-14287, a sudo privilege escalation vulnerability. It includes scripts to check system status, apply patches, and scan sudoers files for risky configurations.
This is a detailed technical walkthrough of the Agent Sudo TryHackMe challenge, covering reconnaissance, enumeration, exploitation, and privilege escalation via CVE-2019-14287. It includes step-by-step commands, tool usage, and an explanation of the sudo logic flaw.
This repository contains a functional exploit script for CVE-2019-14287, a sudo vulnerability that allows local privilege escalation by exploiting a user ID overflow. The script checks for vulnerable sudo versions and attempts to exploit the flaw if conditions are met.
This repository provides a Docker-based proof-of-concept for CVE-2019-14287, a sudo vulnerability allowing privilege escalation by exploiting incorrect handling of user IDs (specifically, using -1 or 4294967295 to bypass authentication and execute commands as root).
The repository contains a vague README with no actual exploit code or technical details about CVE-2019-14287. It describes the vulnerability in generic terms without providing actionable information or proof-of-concept code.
The repository contains only a README with a title and CVE reference, lacking any functional exploit code or technical details. It appears to be a placeholder or incomplete submission.
This repository contains a functional exploit script for CVE-2019-14287, a sudo security bypass vulnerability. The script checks for a vulnerable sudo version and attempts to exploit it by running a command as user ID -1, which sudo incorrectly treats as root.
This repository contains functional exploit scripts (Python and Bash) for CVE-2019-14287, a sudo vulnerability allowing local privilege escalation by exploiting incorrect user ID handling. The scripts verify sudo version and execute the exploit if conditions are met.
The repository contains only a minimal README with a CVE title and no functional exploit code or technical details. It appears to be a placeholder or incomplete submission.
This repository contains a functional exploit for CVE-2019-14287, a sudo vulnerability that allows local privilege escalation by exploiting a user ID parsing flaw. The exploit checks the sudo version, tests the vulnerability, and spawns a root shell if successful.
The repository contains technical documentation and references related to CVE-2019-14287, a sudo privilege escalation vulnerability. It includes explanations and external references but lacks functional exploit code.
This repository provides a technical write-up demonstrating CVE-2019-14287, a sudo vulnerability where a user can bypass restrictions by exploiting a user ID overflow (e.g., -u#-1 or -u#4294967295) to execute commands as root. The steps include creating a restricted user and demonstrating the bypass.
Nuclei Templates (1)
References (37)
Scores
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H