vCenter Sudo LPE (CVE-2024-37081) #19402
Conversation
| 'Matei "Mal" Badanoiu', # discovery | ||
| ], | ||
| 'Platform' => [ 'linux' ], | ||
| 'Arch' => [ ARCH_X86, ARCH_X64 ], |
There was a problem hiding this comment.
It looks like for a couple of targets at least that the host is expecting to import a Python module, so if this doesn't work because you're dropping an ELF binary and not a shared object then you may want to change these to ARCH_PYTHON.
|
haven't forgotten about this, my ESXi server which should be vulnerable has a failing drive, so I'm waiting for the replacements to come in before attempting any more than absolutely necessary disk writes. |
|
again, haven't forgotten about this, getting vcenter and having it install correctly was more of an effort than in previous versions. However, I have it (mostly? seems to have not completed install/setup, but seems functional enough) installed at this point and am making progress.
|
Draft module of CVE-2024-37081. Untested, pseudo coded based on PoC, just haven't had time to get back around to it yet.