EIP-2026-103355

PRE-CVE

Linux Kernel < 4.4.0-21 (Ubuntu 16.04 x64) - 'netfilter target_offset' Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103355. PoCs published by Vitaly Nikolenko.

AI-analyzed exploit summary This exploit leverages a netfilter target_offset out-of-bounds (OOB) vulnerability in Ubuntu 16.04 (kernel 4.4.0-21-generic) to achieve local privilege escalation. It manipulates the refcount of a kernel object via crafted iptables rules, then triggers a use-after-free to execute arbitrary shellcode in kernel mode.

Description

Linux Kernel < 4.4.0-21 (Ubuntu 16.04 x64) - 'netfilter target_offset' Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC

by Vitaly Nikolenko · clocallinux_x86-64

https://www.exploit-db.com/exploits/44300

View Code ZIP pw:eip

This exploit leverages a netfilter target_offset out-of-bounds (OOB) vulnerability in Ubuntu 16.04 (kernel 4.4.0-21-generic) to achieve local privilege escalation. It manipulates the refcount of a kernel object via crafted iptables rules, then triggers a use-after-free to execute arbitrary shellcode in kernel mode.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Complex

Reliability

Reliable

Target: Linux kernel 4.4.0-21-generic (Ubuntu 16.04)

No auth needed

Prerequisites: ip_tables kernel module loaded · SMEP/SMAP disabled

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026