CVE-2022-2588
Code adapted for one cpu, and with a vagrant file provided to boot up a vulnerable machine used for educational purposes.
To create a vulnerable machine, you need to have Vagrant installed on your machine, then execute on the repository root:
Vagrant upWait for installation and booting then :
Vagrant sshInside the Vm:
cd CVE-2022-2588/ && gcc ./exploit.c -o exploit -lpthread
./exploitthen:
su ensimag
password: #ensimag
#The original exploit code : here
To prevent the exploit try to uncomment the line 15 and 18 and restart the process.