Apport 2.20 - Local Privilege Escalation

vendor:

Ubuntu Linux

by:

Gr33nh4t

7.2

CVSS

HIGH

Local Privilege Escalation

264

CWE

Product Name: Ubuntu Linux

Affected Version From: 2.20.11-0ubuntu50.5

Affected Version To: 2.20.1-0ubuntu2.30

Patch Exists: YES

Related CWE: N/A

CPE: a:ubuntu:ubuntu_linux:20.10,cpe:/a:ubuntu:ubuntu_linux:20.04,cpe:/a:ubuntu:ubuntu_linux:18.04,cpe:/a:ubuntu:ubuntu_linux:16.04

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Ubuntu

2021

Apport 2.20 – Local Privilege Escalation

This is a POC for Apport exploit, we exploited these bugs by launching a reverse shell to 127.0.0.1:1234. To compile the exploit code several packages are needed: sudo apt-get install build-essential nasm gcc. The reverse shell will connect on the next execution of logrotate.

Mitigation:

Update Apport to the latest version.

Source

Apport 2.20 – Local Privilege Escalation

Mitigation:

Exploit-DB raw data: