lockedbyte/CVE-Exploits lockedbyte/CVE-Exploits

  • Stars
    star
    676
  • Rank 66,790 (Top 2 %)
  • Language
    C
  • Created about 4 years ago
  • Updated over 3 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
lockedbyte/CVE-Exploits
github

lockedbyte

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

PoC exploits for software vulnerabilities

CVE Exploit PoC's

PoC exploits for multiple software vulnerabilities.

Current exploits

  • CVE-2019-18634 (LPE): Stack-based buffer overflow in sudo tgetpass.c when pwfeedback module is enabled
  • CVE-2021-3156 (LPE): Heap-based buffer overflow in sudo sudoers.c when an argv ends with backslash character.
  • CVE-2020-28018 (RCE): Exim Use-After-Free (UAF) in tls-openssl.c leading to Remote Code Execution
  • CVE-2020-9273 (RCE): ProFTPd Use-After-Free (UAF) leading to Post-Auth Remote Code Execution
  • jad OOB write (CE): JAD out-of-bounds write leading to code execution (No CVE given yet)

More Repositories

1

CVE-2021-40444

CVE-2021-40444 PoC
HTML
1,573
star
2

so_loader

In-memory ELF shared library loading
C
35
star
3

protcheck

A C-based checksec without readelf or grep dependance.
C
11
star
4

exploit-challenges

CTF pwn challenges exploits.
Python
9
star
5

slides

Speech slides
8
star
6

vroute

vroute: Reverse SOCKS proxy through HTTP(S) for network pivoting
C
6
star
7

glibc_sources

Glibc sources for each version
3
star