CVE-2019-7304

This exploit leverages a vulnerability in snapd (CVE-2019-7304) to achieve local privilege escalation on Ubuntu systems. It bypasses access control checks to use restricted API functions, either creating a user via Ubuntu SSO or installing a malicious snap with an install hook.

This exploit leverages a vulnerability in snapd (CVE-2019-7304) to achieve local privilege escalation on Ubuntu systems. It manipulates the snapd API to create a new user with sudo rights by exploiting insecure parsing of UNIX socket peer data.

This repository contains two Python-based privilege escalation exploits (dirty_sockv1.py and dirty_sockv2.py) targeting CVE-2019-7304, a vulnerability in snapd's API access control. The exploits leverage improper socket permission handling to create a local user with sudo rights via either Ubuntu SSO integration (v1) or arbitrary snap installation (v2).

This PoC generates a malicious snap package to exploit CVE-2019-7304 (Dirty Sock), a local privilege escalation vulnerability in snapd. It creates a snap with an install hook that adds a new sudo user with a specified password, leveraging snapd's improper handling of socket permissions.

This is a remastered local privilege escalation (LPE) exploit for CVE-2019-7304, targeting a vulnerability in snapd. The exploit creates a malicious snap package, installs it with elevated privileges, and then abuses it to gain root access by modifying the bash binary's permissions.

This exploit leverages CVE-2019-7304 to escalate privileges via snapd by creating a malicious snap package with a custom install hook. The hook adds a user with sudo privileges, allowing the attacker to gain root access.

This repository contains functional exploit code for CVE-2019-7304, a local privilege escalation vulnerability in snapd affecting Ubuntu and other Linux distributions. The exploit leverages improper access control in the snapd API to create a privileged user account either via Ubuntu SSO integration (v1) or by installing a malicious snap package (v2).

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2019-7304, targeting a vulnerability in snapd. The exploit creates a malicious snap package, installs it with elevated privileges, and then abuses it to gain root access by modifying the bash binary's permissions.

This repository documents the exploitation of CVE-2019-7304 (Dirty_Sock), a privilege escalation vulnerability in snapd versions older than 2.37. It describes the setup, exploitation steps, and impact of the vulnerability, which allows a local attacker to gain root access by manipulating the snapd REST API.