Kernel Exploits

What is a kernel

image

• See the definition on Wikiedia

• A list of Kernel Exploits

How to privesc via kernel exploit

Enumerate

• uname -a or cat /etc/lsb-release

• We can then google the version we get and see if anything comes out

• We can also use Linux exploit suggester and investigate the results

Dirty Cow

• We can use this exploit

• gcc -pthread cow.c -o cow -lcrypt

• We are a low privilege user for now
• ./cow
• passwd should let us be root