<h1> CVE 2015-8660 Research</h1>
<h2>Description</h2>
This is research I conducted on the CVE 2015-8660 overlayFS vulnerability for my Operating System Security course final research project. The goal of this project was to find a Linux kernel vulnerability from 2012-2022, explain the vulnerability, explain the potential effects, and demonstrate the vulnerability using a crafted exploit. This vulnerability is caused by the ovl_setattr funtion located in the fs/overlayfs/inode.c program. When exploited via a crafted application, a malicious user will be able to gain privileged access to a loca machine. This vulnerability affects linux kernel versions through 4.3.3. My project research paper is included as well as a video of my demonstration using exploit code found on Exploit-db referenced below.
<br />
<h2>Tools Used</h2>
- <b> CVE Database </b>
- <b> Virtual Machines (Ubuntu 15.04)</b>
<h2>Environments Used </h2>
- <b> Ubuntu 15.04 </b>
<h2>References</h2>
- <b> [exploitdb](https://www.exploit-db.com/exploits/39166) </b>
- <b> [CVE](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8660) </b>
[4.0K] /data/pocs/8bc70ab3bf2db05b74430994a60c46043f117be6
├── [1.1K] README.md
└── [250K] Research Paper.pdf
0 directories, 2 files