CVE-2015-8660 PoC — Linux kernel‘fs/overlayfs/inode.c’权限许可和访问控制问题漏洞

Source

https://github.com/whu-enjoy/CVE-2015-8660

Associated Vulnerability

Title:Linux kernel‘fs/overlayfs/inode.c’权限许可和访问控制问题漏洞 (CVE-2015-8660)
Description:The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via a crafted application.

Description

这个代码包含了CVE-2015-8660漏洞的利用代码，还有注释，出现问题的源代码，打了补丁后的代码

Readme

# CVE-2015-8660
这个代码包含了CVE-2015-8660漏洞的利用代码，还有注释，出现问题的源代码，打了补丁后的代码<br>
具体代码解释,请查看我的博客 http://blog.csdn.net/enjoy5512/article/details/51155798

File Snapshot


 [4.0K]  /data/pocs/ec9b9a5b4da3502bcab24769b3b90de5095525ce
├── [ 66K]  aftermount.png
├── [4.9K]  diff.patch
├── [8.9K]  inode.c
├── [9.3K]  inode_patch.c
├── [ 65K]  lower.png
├── [ 75K]  mount_overlayfs.png
├── [ 17K]  overlayfs_bk.c
├── [2.6K]  overlayfs.c
├── [ 40K]  overlayfs_in_patched.png
├── [873K]  overlayfs.pptx
├── [ 242]  README.md
├── [ 82K]  test_overlayfs.png
├── [ 68K]  umount.png
└── [ 71K]  upper.png

0 directories, 14 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!