CVE-2022-37706

This repository contains a functional exploit for CVE-2022-37706, a local privilege escalation vulnerability in Enlightenment's SUID binary `enlightenment_sys`. The exploit leverages a command injection flaw in the mount functionality to execute arbitrary commands as root.

This repository contains a functional exploit for CVE-2022-37706, a local privilege escalation vulnerability in Enlightenment's `enlightenment_sys` SUID binary. The exploit leverages a path traversal flaw to execute arbitrary commands with root privileges.

The repository contains a functional exploit for CVE-2022-37706, a local privilege escalation vulnerability in the Enlightenment window manager's `enlightenment_sys` binary. The exploit manipulates file paths and leverages the SUID bit to execute arbitrary code as root.

This repository contains a functional exploit for CVE-2022-37706, a local privilege escalation vulnerability in Enlightenment v0.25.3. The exploit abuses improper pathname handling in the `enlightenment_sys` SUID binary to execute arbitrary commands as root.

This repository contains a functional exploit for CVE-2022-37706, targeting a local privilege escalation (LPE) vulnerability in the Enlightenment window manager's SUID binary. The exploit leverages improper path handling to execute arbitrary commands with root privileges.

The repository contains a functional exploit for CVE-2022-37706, a local privilege escalation vulnerability in Enlightenment's SUID binary `enlightenment_sys`. The exploit leverages a command injection flaw by manipulating file paths and environment variables to execute arbitrary commands as root.

The repository contains a functional exploit for CVE-2022-37706, targeting a privilege escalation vulnerability in Enlightenment v0.25.3 via a SUID binary. The exploit leverages improper path handling in the `enlightenment_sys` binary to execute arbitrary commands with root privileges.

This exploit leverages a path traversal vulnerability in Enlightenment's setuid binary (enlightenment_sys) to escalate privileges by manipulating pathnames starting with /dev/.., ultimately spawning a root shell.

This Metasploit module exploits a command injection vulnerability in Enlightenment's enlightenment_sys binary (CVE-2022-37706) by injecting a semi-colon to execute arbitrary commands, achieving local privilege escalation on Ubuntu 22.04.1 with enlightenment 0.25.3-1.