Giters

Notselwyn / CVE-2024-1086

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.

Home Page:https://pwning.tech/nftables

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Stuck when compiled exploit execute

MarcWarrior opened this issue · comments

commented

Hi, Notselwyn

I noticed something you said:

The underlying vulnerability affects all versions (excluding patched stable branches) from v3.15 to v6.8-rc1.

It stuck when trying to execute the compiled exploit, can you advise something? Does it means that my server is not vulnerable?

Thanks.
20240617201134

commented

Hi , Notselwyn
I have run the exploit on my machine with 4.18.0 kernel, it has no result or any output.

77e7e64b690cdde5e18bf7b7b5a62e3

commented

I speculate that for your system to be affected by this vulnerability, your Linux kernel version must be one of the versions impacted by it, and the system must have the nf_tables module loaded?

As far as I know, nftables only started being the default firewall in RHEL8, which means that by default, versions of RHEL below 8 do not have the nf_tables module loaded.