Comments (12)
Can't compile in ubuntu 6.5.0-17 nor 6.5.0-23. Same goes for Debian 12.
Removing last commit from ./ExploitGSM_6_5/main.c "works", and exploit compiles but will not run/do anything.
./ExploitGSM ubuntu
Error find kernel
from exploitgsm.
@kronostitanplay Could you update your system to see if it works on 6.5.0-27?
Yes! it's working
from exploitgsm.
what's your kernel version?
from exploitgsm.
6.5.0-26-generic #26~22.04.1-Ubuntu SMP PREEMPT_DYNAMIC Tue Mar 12 10:22:43 UTC 2 x86_64 x86_64 x86_64 GNU/Linux
from exploitgsm.
Can't compile in ubuntu 6.5.0-17 nor 6.5.0-23. Same goes for Debian 12.
Removing last commit from ./ExploitGSM_6_5/main.c "works", and exploit compiles but will not run/do anything.
./ExploitGSM ubuntu Error find kernel
You should use Offset generator for adding kernel offsets
from exploitgsm.
These lines should be changed with offset generator output (run it as root, change distro_name as needed):
ExploitGSM/ExploitGSM_6_5/main.c
Lines 368 to 371 in 0cc21d2
Worked on my KDE Neon, main.c commit reverted:
neon@neon:~/Downloads/ExploitGSM/ExploitGSM_6_5$ ./ExploitGSM ubuntu
permissible spray -> 500
begin try leak startup_xen!
startup_xen leaked address -> ffffffff8ea933a0
text leaked address -> ffffffff8c400000
lockdep_map_size -> 32
spinlock_t_size -> 4
mutex_size -> 32
tty port -> 376
tty buffhead -> 136
dead -> 524
waiting setconf dlci thread
Wait 3 sec for ending kernel work execution
We get root, spawn shell
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
root@neon:/root# ^C
neon@neon:~/Downloads/ExploitGSM/ExploitGSM_6_5$ uname -a
Linux neon 6.5.0-21-generic #21~22.04.1-Ubuntu SMP PREEMPT_DYNAMIC Fri Feb 9 13:32:52 UTC 2 x86_64 x86_64 x86_64 GNU/Linux
from exploitgsm.
After update kernel offset.
permissible spray -> 500
begin try leak startup_xen!
startup_xen leaked address -> ffffffffaaa933a0
text leaked address -> ffffffffa8400000
lockdep_map_size -> 32
spinlock_t_size -> 4
mutex_size -> 32
tty port -> 376
tty buffhead -> 136
dead -> 524
Error set line discipline N_GSM, Invalid argument
from exploitgsm.
After update kernel offset.
permissible spray -> 500 begin try leak startup_xen! startup_xen leaked address -> ffffffffaaa933a0 text leaked address -> ffffffffa8400000 lockdep_map_size -> 32 spinlock_t_size -> 4 mutex_size -> 32 tty port -> 376 tty buffhead -> 136 dead -> 524 Error set line discipline N_GSM, Invalid argument
Because you not have n_gsm kernel module. Install extra kernel modules
from exploitgsm.
After update kernel offset.
permissible spray -> 500 begin try leak startup_xen! startup_xen leaked address -> ffffffffaaa933a0 text leaked address -> ffffffffa8400000 lockdep_map_size -> 32 spinlock_t_size -> 4 mutex_size -> 32 tty port -> 376 tty buffhead -> 136 dead -> 524 Error set line discipline N_GSM, Invalid argument
Because you not have n_gsm kernel module. Install extra kernel modules
Thanks it's works
permissible spray -> 500
begin try leak startup_xen!
startup_xen leaked address -> ffffffff9e0933a0
text leaked address -> ffffffff9ba00000
lockdep_map_size -> 32
spinlock_t_size -> 4
mutex_size -> 32
tty port -> 376
tty buffhead -> 136
dead -> 524
waiting setconf dlci thread
Wait 3 sec for ending kernel work execution
We get root, spawn shell
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
from exploitgsm.
Try my another exploit for Debian 12
from exploitgsm.
@kronostitanplay Could you update your system to see if it works on 6.5.0-27?
from exploitgsm.
@kronostitanplay Could you update your system to see if it works on 6.5.0-27?
Hi, I have confirmed this works on Ubuntu 22 LTS with kernel 6.5.0-27.
from exploitgsm.
Related Issues (9)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from exploitgsm.