CVEs-PoC/2020/CVE-2020-14342.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 15:15:46 +02:00

Files

T

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.

POC

Reference

No PoCs from references.

Github

https://github.com/404notf0und/CVE-Flow
https://github.com/Live-Hack-CVE/CVE-2020-14342

792 B Raw Blame History

CVE-2020-14342

Description

POC

Reference

Github

792 B

Raw Blame History