MCPcopy Index your code
hub / github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit

github.com/Arinerron/CVE-2022-0847-DirtyPipe-Exploit @main

Chat with this repo
repository ↗ · DeepWiki ↗ · + Follow
3 symbols 4 edges 1 files 1 documented · 33%
What it actually does AI analysis from the code graph — generated when you open this
loading…
README

What is this

This is Max Kellermann's proof of concept for Dirty Pipe, but modified to overwrite root's password field in /etc/passwd and restore after popping a root shell.

Side Note: I do not claim any credit for finding this vulnerability or writing the proof of concept. This exploit is merely a small modification of Kellermann's proof of concept to enable quick/easy exploitation. Please read the original article on this extremely interesting vulnerability @ https://dirtypipe.cm4all.com/ when you get the opportunity. It really does deserve your time to understand it.

How to use this

  1. Compile with ./compile.sh (assumes gcc is installed)
  2. Run ./exploit and it'll pop a root shell

su: must be run from a terminal

If you get this error message: 1. Login as root with the password aaron. 2. Then, restore /etc/passwd by running mv /tmp/passwd.bak /etc/passwd

(oops sorry my laptop battery is dying and my charger broke so I don't have time to fix this the right now, sorry)

Core symbols most depended-on inside this repo

prepare_pipe
called by 1
exploit.c
main
called by 0
exploit.c

Shape

Function 2
Class 1

Languages

C100%

Modules by API surface

exploit.c3 symbols

For agents

$ claude mcp add CVE-2022-0847-DirtyPipe-Exploit \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact

Ask about this repo answers extend the page