Lucene search
SAINT CorporationSAINT:ABCD3AE5A28A14CD616BF070F6F8E939HistoryJun 26, 2015 - 12:00 a.m.
Ubuntu overlayfs privilege elevation
2015-06-2600:00:00
SAINT Corporation
download.saintcorporation.com
61
0.001 Low
EPSS
Percentile
26.5%
Added: 06/26/2015
CVE: CVE-2015-1328
BID: 75206
Background
Overlayfs is a type of file system for Linux which implements a union mount.
Problem
In Ubuntu, overlayfs fails to correctly check file permissions when creating new files in the upper filesystem directory. This can be exploited by an unprivileged user to write arbitrary files, leading to command execution with root privileges.
Resolution
Apply one of the fixes from Ubuntu.
References
<http://seclists.org/oss-sec/2015/q2/717>
Limitations
Exploit works in Ubuntu 12.04, 14.04, 14.10, and 15.04. The kernel must have **CONFIG_USER_NS=y** and overlayfs must have the **FS_USERNS_MOUNT** flag in order for the exploit to succeed. gcc must be installed on the target.
Platforms
Linux
Related
nessus
nessus
Ubuntu 12.04 LTS : linux vulnerability (USN-2640-1)
2015-06-16 00:00:00
Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerability (USN-2645-1)
2015-06-16 00:00:00
Ubuntu 14.04 LTS : Linux kernel vulnerability (USN-2643-1)
2015-06-16 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2645-1)
2015-06-16 00:00:00
Ubuntu: Security Advisory (USN-2646-1)
2015-06-16 00:00:00
Ubuntu: Security Advisory (USN-2641-1)
2015-06-16 00:00:00
ubuntu
ubuntu
Linux kernel (Utopic HWE) vulnerability
2015-06-15 00:00:00
Linux kernel vulnerability
2015-06-15 00:00:00
Linux kernel (Trusty HWE) vulnerability
2015-06-15 00:00:00
canvas
canvas
Immunity Canvas: OVERLAYFS
2016-11-28 03:59:00
zdt
zdt
Ubuntu 12.04 / 14.04 / 14.10 / 15.04 overlayfs Local Root Exploit
2015-06-17 00:00:00
Linux Kernel (Ubuntu / Fedora / Redhat) - 'Overlayfs' Privilege Escalation Exploit
2016-11-03 00:00:00
Overlayfs Privilege Escalation Exploit
2016-11-02 00:00:00
cve
cve
CVE-2015-1328
2016-11-28 03:59:00
securityvulns
securityvulns
[USN-2647-1] Linux kernel vulnerability
2015-06-21 00:00:00
Linux kernel security vulnerabilities
2015-06-21 00:00:00
saint
saint
Ubuntu overlayfs privilege elevation
2015-06-26 00:00:00
Ubuntu overlayfs privilege elevation
2015-06-26 00:00:00
Ubuntu overlayfs privilege elevation
2015-06-26 00:00:00
threatpost
threatpost
Ubuntu Patches Privilege-Escalation Bug
2015-06-22 10:16:52
cloudfoundry
cloudfoundry
CVE-2015-1328 - overlayfs privilege escalation | Cloud Foundry
2015-06-17 00:00:00
packetstorm
packetstorm
Ubuntu 12.04 / 14.04 / 14.10 / 15.04 overlayfs Local Root
2015-06-16 00:00:00
Overlayfs Privilege Escalation
2016-11-01 00:00:00
nvd
nvd
CVE-2015-1328
2016-11-28 03:59:00
exploitpack
exploitpack
debiancve
debiancve
CVE-2015-1328
2016-11-28 03:59:00
prion
prion
Design/Logic Flaw
2016-11-28 03:59:00
redhatcve
redhatcve
CVE-2015-1328
2015-10-30 10:12:55
ubuntucve
ubuntucve
CVE-2015-1328
2015-06-15 00:00:00
CVE-2018-6559
2018-10-18 00:00:00
cvelist
cvelist
CVE-2015-1328
2016-11-28 03:01:00
exploitdb
exploitdb
mssecure
mssecure
How to proactively defend against Mozi IoT botnet
2021-08-19 18:00:46
metasploit
metasploit
Overlayfs Privilege Escalation
2016-10-05 03:21:53
mmpc
mmpc
How to proactively defend against Mozi IoT botnet
2021-08-19 18:00:46
kitploit
kitploit