Main
Vulnerability Database
Exploits
ID:907 - Exploit for Privilege escalation in systemd - CVE-2016-10156
ID:907 - Exploit for Privilege escalation in systemd - CVE-2016-10156
Published: March 18, 2020
Vulnerability identifier: #VU5366
Vulnerability risk: Medium
CVE-ID: CVE-2016-10156
CWE-ID: CWE-264
Exploitation vector: Local access
Vulnerable software:
systemd
systemd
Link to public exploit:
Vulnerability description
The vulnerability allows a local user to obtain root privileges.
The vulnerability exists within the touch_file() function in "/src/basic/fs-util.c". A local user can use systemd timer functions to create world writable set user id (suid) files, owned by root user, and gain root privileges on vulnerable system.
Successful exploitation of the vulnerability may allow a local user to gain root privileges on vulnerable system.
The vulnerability exists within the touch_file() function in "/src/basic/fs-util.c". A local user can use systemd timer functions to create world writable set user id (suid) files, owned by root user, and gain root privileges on vulnerable system.
Successful exploitation of the vulnerability may allow a local user to gain root privileges on vulnerable system.
Remediation
The vulnerability was fixed in version v229.