CVE-2019-5736

This exploit leverages CVE-2019-5736 to overwrite the host's runc binary from within a container, achieving root-level code execution on the host. It uses a malicious shared library to hijack the runc process during container execution.

This exploit leverages CVE-2020-15257, a container escape vulnerability in Docker and runc, by overwriting the host's `/usr/bin/docker-runc` binary with a malicious payload. It requires execution within a container and triggers when `docker exec` is used on the host.

This is a Go implementation of CVE-2019-5736, a container escape exploit for Docker. It overwrites the host's runc binary by leveraging a race condition when a user executes `docker exec` into a container, allowing arbitrary command execution as root on the host.

This PoC demonstrates CVE-2019-5736, a container escape vulnerability in runc, by appending a string to the host's runc binary via /proc/self/exe manipulation. It uses a two-stage approach to overwrite the binary during runtime.

This repository contains two proof-of-concept exploits for CVE-2019-5736, a vulnerability in runC that allows container escape via overwriting the host's runC binary. The exploits demonstrate both a simple binary overwrite and a reverse shell payload.

This is a functional exploit for CVE-2019-5736, which leverages a container escape vulnerability in runc and LXC. The exploit overwrites the host's runc binary to achieve root-level code execution on the host system.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the host's runc binary with a malicious payload. It uses a two-stage approach to inject a reverse shell into the host system.

This repository contains a working proof-of-concept exploit for CVE-2019-5736, which leverages a Docker container escape vulnerability to overwrite the runc binary and execute a cryptocurrency miner with root privileges. The exploit combines a legitimate Docker escape technique with a Bitcoin mining script to demonstrate post-exploitation activity.

This repository contains a Dockerfile exploit for CVE-2019-5736, a container escape vulnerability in runc. It leverages a malicious container image to overwrite the host runc binary and achieve privilege escalation.

This repository contains a functional proof-of-concept exploit for CVE-2019-5736, targeting a container runtime vulnerability. The exploit leverages a malicious shared library to overwrite the runtime binary, achieving container escape.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc (Docker runtime) by overwriting the runc binary with a malicious payload. The exploit leverages file descriptor manipulation to achieve host-level code execution.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the host's runc binary with a malicious payload. It involves compiling a trojanized libseccomp library and replacing /bin/bash to achieve privilege escalation.

This is a functional exploit for CVE-2019-5736, targeting a container escape vulnerability in runc and LXC. It overwrites the host's runc binary to achieve root-level code execution by leveraging a malicious shared library and init process.

This repository provides a detailed technical analysis and deconstruction of CVE-2019-5736, a critical vulnerability in runc that allows container escape to host root. It includes a high-level explanation of the exploit chain, impact analysis, and mitigation recommendations.

This repository provides a detailed deconstruction and Proof-of-Concept (PoC) for CVE-2019-5736, a critical vulnerability in runc that allows container escape to host root access. It includes technical analysis, setup instructions, and impact assessment.

This repository contains a C-based proof-of-concept exploit for CVE-2019-5736, which allows a malicious Docker container to overwrite the host's `runc` binary and execute arbitrary commands on the host with root privileges. The exploit includes scripts for environment setup, building the exploit, and triggering the vulnerability.

This is a working exploit for CVE-2019-5736, a container escape vulnerability in runc. It overwrites the host's runc binary via a file descriptor manipulation to achieve remote code execution (RCE) on the host system.

This repository documents an attack implementation and security mechanism for CVE-2019-5736, a Docker vulnerability allowing container escape to gain root access. It describes the steps to exploit the vulnerability and a mitigation using the 'chattr' command to make the 'runc' file immutable.

This repository contains a working proof-of-concept exploit for CVE-2019-5736, a container escape vulnerability in runc. The exploit involves overwriting the host's runc binary with a malicious payload to achieve remote code execution on the host system.

This repository provides a reproducer for CVE-2019-5736, a container escape vulnerability in runc. It includes steps to build vulnerable packages, set up a test environment, and execute the exploit to demonstrate the flaw.

This PoC exploits CVE-2019-5736, a container breakout vulnerability in runc, by overwriting the /bin/sh binary and then the runc binary itself via file descriptor manipulation. It achieves container escape by leveraging the time-of-check to time-of-use (TOCTOU) race condition in runc.

This repository contains a proof-of-concept exploit for CVE-2019-5736, a vulnerability in runC that allows container escape by overwriting the runC binary. It includes two PoCs: one that replaces runC with a benign program and another that installs a reverse shell.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the runc binary via a race condition in /proc/self/exe. It achieves RCE on the host system when a victim executes a command in a compromised container.

This is a functional exploit for CVE-2019-5736, which allows container escape by overwriting the host's runc binary via a malicious init process. The exploit leverages a race condition in runc to gain root-level code execution on the host.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the host's runc binary with a malicious payload. It uses a two-stage approach to achieve remote code execution (RCE) on the host system.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the host's runc binary with a malicious version. It uses a two-stage payload to achieve remote code execution via a reverse shell.

This PoC exploits CVE-2019-5736, a container breakout vulnerability in runC, by overwriting the runC binary on the host system. It leverages a race condition to replace the runC binary with malicious code, potentially leading to remote code execution on the host.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the runc binary with a malicious payload that spawns a reverse shell. The exploit leverages a race condition to replace the runc binary via /proc/self/fd manipulation.

This PoC exploits CVE-2019-5736, a container escape vulnerability in runc, by overwriting the host runc binary with arbitrary data. It consists of two stages: stage1 opens the host binary and passes it to stage2, which appends a string to demonstrate the vulnerability.

This repository contains a functional exploit for CVE-2019-5736, a container escape vulnerability in runc. The exploit involves overwriting the host's runc binary with a malicious payload to achieve remote code execution (RCE) on the host system.

This repository contains a functional exploit for CVE-2019-5736, a vulnerability in runc that allows container escape to achieve RCE on the host system. The PoC includes detailed setup instructions, modified exploit code, and a demonstration of gaining root access on the host via a reverse shell.

This Metasploit module exploits CVE-2019-5736, a flaw in `runc` that allows Docker container escape by overwriting the `runc` binary with a payload. It triggers execution when `docker exec` is used, granting root access on the host.