CVEs-PoC/2017/CVE-2017-8849.md

CVE-2017-8849

Description

smb4k before 2.0.1 allows local users to gain root privileges by leveraging failure to verify arguments to the mount helper DBUS service.

POC

Reference

• http://www.openwall.com/lists/oss-security/2017/05/10/3
• http://www.openwall.com/lists/oss-security/2017/05/10/3
• https://www.exploit-db.com/exploits/42053/
• https://www.exploit-db.com/exploits/42053/

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/WhaleShark-Team/murasame
• https://github.com/stealth/plasmapulsar