Giters

Xthkeer / CVE-Exploits

PoC exploits for software vulnerabilities

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

CVE Exploit PoC's

PoC exploits for multiple software vulnerabilities.

Current exploits

  • CVE-2019-18634 (LPE): Stack-based buffer overflow in sudo tgetpass.c when pwfeedback module is enabled
  • CVE-2021-3156 (LPE): Heap-based buffer overflow in sudo sudoers.c when an argv ends with backslash character.
  • jad OOB write (???): JAD out-of-bounds write leading to code execution (No CVE given yet)
  • CVE-2019-15846 (RCE): Exim prior to 4.92.2 Heap-overflow leading to Remote Code Execution (not finished)
  • CVE-2020-28018 (RCE): Exim Use-After-Free (UAF) in tls-openssl.c leading to Remote Code Execution

About

PoC exploits for software vulnerabilities

Languages

Language:C 75.5%Language:Roff 8.6%Language:Shell 8.4%Language:Makefile 4.4%Language:M4 1.6%Language:Yacc 0.5%Language:Perl 0.4%Language:Lex 0.2%Language:Pascal 0.2%Language:Python 0.1%Language:Objective-C 0.1%Language:GDB 0.1%Language:C++ 0.0%Language:sed 0.0%