CVE-2023-0386

This PoC exploits CVE-2023-0386, a Linux kernel vulnerability in the OverlayFS subsystem, to achieve local privilege escalation (LPE). It uses FUSE to manipulate file attributes and overlayfs mounts to gain root privileges.

This repository contains a proof-of-concept exploit for CVE-2023-0386, a local privilege escalation vulnerability in the Linux kernel's overlay filesystem. The exploit leverages a FUSE filesystem to create a malicious file with elevated privileges, which is then copied to an overlay filesystem to gain root access.

This PoC exploits CVE-2023-0386, a Linux OverlayFS vulnerability, to achieve local privilege escalation (LPE) by manipulating file capabilities and user namespaces. The exploit uses FUSE to create a malicious filesystem and overlay mounts to trigger the vulnerability.

This repository contains a working proof-of-concept exploit for CVE-2023-0386, which leverages a vulnerability in OverlayFS to achieve local privilege escalation (LPE) by copying a FUSE-generated SUID binary from a lower layer to an upper layer, bypassing security restrictions.

This repository contains a functional proof-of-concept exploit for CVE-2023-0386, targeting a privilege escalation vulnerability in the Linux kernel's OverlayFS subsystem. The exploit leverages FUSE and user namespace manipulation to escalate privileges by copying a capable file from a nosuid mount.

This PoC exploits CVE-2023-0386, a vulnerability in the Linux kernel's overlayfs module, to achieve local privilege escalation by manipulating file attributes and using FUSE to create a malicious filesystem. The exploit drops a SUID binary to gain root access.

This PoC exploits CVE-2023-0386, a vulnerability in the Linux kernel's overlayfs, by creating a FUSE filesystem with a setuid binary and leveraging overlayfs to gain root privileges. The exploit uses shellcode to spawn a root shell.

The repository contains documentation files from a Linux kernel version 4.19.72, including ABI stability guidelines, configuration scripts, and hardware-specific documentation. No exploit code or proof-of-concept for CVE-2023-0386 is present in the provided files.

This PoC exploits CVE-2023-0386, a Linux kernel vulnerability in the overlayfs module, to achieve local privilege escalation. It uses FUSE to create a fake filesystem and overlayfs to trigger the vulnerability, resulting in a SUID binary that spawns a root shell.

This is a detailed technical writeup for the HackTheBox TwoMillion machine, covering API abuse, command injection, and privilege escalation via CVE-2023-0386 (OverlayFS). It includes step-by-step exploitation details, code snippets, and technical analysis.

This Go-based PoC exploits CVE-2023-0386, a Linux kernel vulnerability in the overlayfs filesystem, to achieve local privilege escalation (LPE). It uses FUSE and overlayfs to create a malicious binary with SUID bit set, allowing execution as root.

This repository contains a functional proof-of-concept exploit for CVE-2023-0386, a local privilege escalation vulnerability in Linux OverlayFS. The exploit leverages incorrect handling of file capabilities during copy-up operations to escalate privileges to root.

This PoC exploits CVE-2023-0386, a Linux kernel vulnerability in the overlayfs module, by creating a malicious FUSE filesystem with a setuid binary to achieve local privilege escalation. The exploit leverages overlayfs to manipulate file permissions and execute arbitrary code with elevated privileges.

This PoC exploits CVE-2023-0386, a Linux OverlayFS vulnerability, to achieve local privilege escalation (LPE) by manipulating file capabilities and user namespaces. The exploit uses FUSE to create a malicious filesystem and overlay mounts to trigger the vulnerability.

The repository contains only a README.md file with a CVE identifier and no exploit code or technical details. It appears to be a placeholder or stub.

This Metasploit module exploits CVE-2023-0386, a Linux kernel vulnerability in OverlayFS that allows local privilege escalation by manipulating uid mappings when copying capable files from a nosuid mount. It compiles or uploads an exploit binary and a payload executable to achieve root privileges.