CVE-2012-0056 mem_write - mempodipper.c
I don't know why this isn't mentioned in the CVE (or anywhere else AFAIK), but Linux Kernel 3.0.0 is also vulnerable to the privilege escalation vulnerability in mem_write in the linux kernel.
The mempodipper exploit works without any modifications. Tested on 3.0.0-12-server (Ubuntu).
Meterpreter session, showing unprivileged user & uname:
After dropping into a shell and running mempodipper:
UPDATE:
I contacted CVE MITRE and they have agreed to update the CVE Entry:
Très Acton to cve-assign
Hey guys,
This CVE entry is incomplete and should be updated to reflect that another Kernel Version is affected. It is a local privilege escalation vulnerability in Linux.
CVE: CVE-2012-0056
Add vulnerable version: Linux Kernel 3.0.0
Proof: http://www.hackmy.systems/post/91788882301/cve-2012-0056-mem-write-mempodipper-c
Thanks.
Très
from [email protected]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> This CVE entry is incomplete
> CVE: CVE-2012-0056 Thanks for the note. Yes, we agree that this vulnerability was never reported as specific to 2.6.x kernels. In our internal database, we have changed CVE-2012-0056 to align with our typical practices for expressing affected versions. This change should become visible on the http://cve.mitre.org web site in the coming days.
Update 2: I have confirmed that this entry has been now been updated on the CVE Mitre website.