Methodology
Linux Exploit Suggester
les.sh (Recommended)
linux-exploit-suggester-2 (Perl)
CVE-2022-0847 — DirtyPipe (Kernel 5.8 - 5.16.11)
Overwrite read-only files via pipe splice. Instant root.Check
Exploit
CVE-2016-5195 — DirtyCow (Kernel 2.6.22 - 4.8.2)
Race condition in copy-on-write. Write to read-only mappings.Check
Exploit — Overwrite /etc/passwd
Exploit — SUID Method
CVE-2021-4034 — PwnKit (pkexec)
Polkit pkexec local privilege escalation. Works on almost all Linux distros.Check
Exploit
CVE-2021-3493 — OverlayFS (Ubuntu)
Ubuntu kernel overlay filesystem privilege escalation.CVE-2022-2588 — Dirty Cred (Kernel 5.x)
CVE-2023-0386 — OverlayFS (Kernel < 6.2)
Compile on Attacker (Cross-Compile)
If target has no gcc:Quick Reference
| CVE | Kernel | Year | Reliability |
|---|---|---|---|
| DirtyCow (CVE-2016-5195) | 2.6.22 - 4.8.2 | 2016 | High |
| PwnKit (CVE-2021-4034) | Any (polkit) | 2021 | Very High |
| OverlayFS (CVE-2021-3493) | Ubuntu specific | 2021 | High |
| Baron Samedit (CVE-2021-3156) | sudo < 1.9.5p2 | 2021 | High |
| DirtyPipe (CVE-2022-0847) | 5.8 - 5.16.11 | 2022 | Very High |
| DirtyCred (CVE-2022-2588) | 5.x | 2022 | Medium |
| OverlayFS (CVE-2023-0386) | < 6.2 | 2023 | High |