CVE-2017-7308

Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities

KOOBE Towards Facilitating Exploit Generation of Kernel Out-Of-Bounds Write Vulnerabilities Setup /setupsh /buildsh It's been tested on Ubuntu 1804 Usage source koobe/bin/activate cd aeg-analysis python mainpy -h Tutorial CVE-2017-7308 CVE-2018-5703 CVE-2017-7533 CVE-2017-1000112 Utilit

A simple anti-rootkit Linux kernel module for an 'Operating Systems Security' course.

About This is a simple anti-rootkit Linux Kernel Module written for a Operating Systems Security course It contains 7 different kernel integrity checks It is only compatible with the x86_64 architecture, but some non architecture specific checks can be used on a different architecture Table of Contents Installation Usage Available checks Pinned CR bits MSR LSTAR Syscall

CVE-2017-7308 POC

CVE-2017-7308 CVE ID: CVE-2017-7308 Publish date: 2017-03-29T20:59:00373 Base score (CVSS 30/31): 78 Description: The packet_set_ring function in net/packet/af_packetc in the Linux kernel through 4106 does not properly validate certain block-size data, which allows local users to cause a denial of service (integer signedness error and out-of-bounds write), or gain privil

Disclaimer USE AT YOUR OWN RISK! AUTHORS OF THIS CODE ARE NOT RESPONSIBLE FOR ANY HARM DONE TO YOUR MACHINE, YOUR BELONGINGS OR YOURSELF Note that code in this repository exploits kernel code In case you try the code out on a remote machine, make sure you can reboot it remotely in case of a crash About This repository contains the exploits showcasing the BlindSide attack des

attachment and write up for D^3CTF 2023's pwn challenge - d3kcache

[D^3CTF 2023] d3kcache: From null-byte cross-cache overflow to infinite arbitrary read & write in physical memory space 0x00 Before we start It may be my last time to design the Pwn challenge for D^3CTF before my undergraduate graduation Although I have always wanted to come up with some good challenges, I have been too inexperienced to create anything particularly

kernel-exploits CVE-2016-2384: a double-free in USB MIDI driver CVE-2016-9793: a signedness issue with SO_SNDBUFFORCE and SO_RCVBUFFORCE socket options CVE-2017-6074: a double-free in DCCP protocol CVE-2017-7308: a signedness issue in AF_PACKET sockets

some exploits for kernel linux

kernel-linux-xpls some exploits for kernel linux CVE-2017-7308 Include SMEP and Kaslr bypass CVE-2017-6074 Include SMEP bypass and

Linux kernel < 4.10.15 - Race Condition Privilege Escalation

Ecploit-kernel-410-linux-local Linux kernel &lt; 41015 - Race Condition Privilege Escalation Linux kernel &lt; 41015 CVE-2017-1000112 This is a proof-of-concept local root exploit for the vulnerability in the UFO Linux kernel implementation CVE-2017-1000112 Some details: wwwopenwallcom/lists/oss-security/2017/08/13/1 s/timerfdc Vulnerbility Exploit Vulne

Bitdefender introspection PoC for VBH This project demonstrates protection for three types of exploits: SMEP/SMAP disabling vDSO modifications runc overwrite SMEP/SMAP disable Overview SMEP: If set, execution of code in a higher ring generates a fault SMAP: If set, access of data in a higher ring generates a fault A malicious program may disable SMAP in order to access dat