CVEs-PoC/2017/CVE-2017-5899.md at main

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-04-21 09:56:14 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

920 B

Raw Permalink Blame History

CVE-2017-5899

Description

Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. (dot dot) in the randstr argument.

POC

Reference

http://www.openwall.com/lists/oss-security/2017/01/27/7

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/AlienTec1908/Gigachad_HackMyVM_Easy
https://github.com/Bultuush/Machine-7
https://github.com/bcoles/local-exploits
https://github.com/ganbayar-bolormunkh/Machine-7

920 B Raw Permalink Blame History

CVE-2017-5899

Description

POC

Reference

Github

920 B

Raw Permalink Blame History