Skip to content

Files

Latest commit

870fc97 · Mar 4, 2022

History

History
This branch is 82 commits behind helloexp/0day:master.

00-CVE_EXP

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
Jan 13, 2022
Jan 13, 2022
Jan 13, 2022
Jan 13, 2022
Jan 13, 2022
Jan 13, 2022
Mar 1, 2022
Jan 20, 2022
Jan 13, 2022
Mar 1, 2022
Jan 13, 2022
Mar 1, 2022
Mar 1, 2022
Jan 13, 2022
Jan 20, 2022
Mar 1, 2022
Feb 24, 2022
Mar 1, 2022
Mar 1, 2022
Jan 13, 2022
Mar 1, 2022
Jan 20, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Jan 13, 2022
Mar 1, 2022
Mar 1, 2022
Jan 20, 2022
Jan 13, 2022
Jan 13, 2022
Mar 1, 2022
Mar 1, 2022
Jan 20, 2022
Jan 13, 2022
Jan 20, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Mar 1, 2022
Feb 10, 2022
Mar 4, 2022
Mar 3, 2022
Jan 13, 2022
Jan 13, 2022
Jan 13, 2022
Mar 1, 2022
Jan 13, 2022
Jan 13, 2022

CVE Exploit PoC's

PoC exploits for multiple software vulnerabilities.

Current exploits

  • CVE-2019-18634 (LPE): Stack-based buffer overflow in sudo tgetpass.c when pwfeedback module is enabled
  • CVE-2021-3156 (LPE): Heap-based buffer overflow in sudo sudoers.c when an argv ends with backslash character.
  • CVE-2020-28018 (RCE): Exim Use-After-Free (UAF) in tls-openssl.c leading to Remote Code Execution
  • CVE-2020-9273 (RCE): ProFTPd Use-After-Free (UAF) leading to Post-Auth Remote Code Execution
  • jad OOB write (CE): JAD out-of-bounds write leading to code execution (No CVE given yet)