Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2019-14287 PoC — Sudo 输入验证错误漏洞

Source
https://github.com/5l1v3r1/cve-2019-14287sudoexp
Associated Vulnerability
Title:Sudo 输入验证错误漏洞 (CVE-2019-14287)
Description:In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER= logging, for a "sudo -u \#$((0xffffffff))" command.
Readme
## CVE-2019-14287:sudo权限绕过漏洞分析与复现



Just for education purpose
File Snapshot

 [4.0K]  /data/pocs/c2b8322e1c6e1da0b3f7e551efa091341a891644
├── [3.9K]  chapter1.md
├── [4.0K]  png
│   ├── [153K]  01.PNG
│   ├── [347K]  02.PNG
│   ├── [345K]  03.PNG
│   ├── [349K]  04.PNG
│   └── [139K]  05.PNG
├── [  91]  README.md
└── [ 110]  SUMMARY.md

1 directory, 8 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →