EIP-2026-103354

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103354. PoCs published by vnik.

AI-analyzed exploit summary This exploit leverages a netfilter target_offset out-of-bounds vulnerability in Ubuntu 16.04 (kernel 4.4.0-21) to achieve local privilege escalation. It consists of two components: a decrementer (decr.c) that manipulates kernel memory and a payload (pwn.c) that executes a shellcode to escalate privileges.

Description

Linux Kernel 4.4.0-21 (Ubuntu 16.04 x64) - Netfilter 'target_offset' Out-of-Bounds Privilege Escalation

Exploits (1)

exploitdb WORKING POC VERIFIED

by vnik · clocallinux_x86-64

https://www.exploit-db.com/exploits/40049

View Code ZIP pw:eip

This exploit leverages a netfilter target_offset out-of-bounds vulnerability in Ubuntu 16.04 (kernel 4.4.0-21) to achieve local privilege escalation. It consists of two components: a decrementer (decr.c) that manipulates kernel memory and a payload (pwn.c) that executes a shellcode to escalate privileges.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Complex

Reliability

Reliable

Target: Linux kernel 4.4.0-21-generic (Ubuntu 16.04)

No auth needed

Prerequisites: ip_tables kernel module loaded · SMEP/SMAP disabled · Linux kernel 4.4.0-21-generic

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Linux Kernel 4.4.0-21 (Ubuntu 16.04 x64) - Netfilter 'target_offset' Out-of-Bounds Privilege Escalation

Exploitation Summary

Description

Exploits (1)

Details