xsspresso
xsspresso
Tags/ Kernel Exploit

Kernel Exploit

5 writeups tagged with Kernel Exploit

WebEasyLinux

HTB — Help

HelpDeskZ GraphQL unauthenticated query exposes user creds. File upload bypass for PHP webshell. Kernel 4.4 exploit for root privilege escalation.

#GraphQL#File Upload#Kernel Exploit
Jan 20, 2025HackTheBox
WebMediumLinux

HTB — Popcorn

File upload bypass on torrent hosting site via content-type manipulation for PHP webshell. Kernel exploit or DirtyCow for privilege escalation.

#File Upload Bypass#PHP Webshell#Kernel Exploit
Jan 18, 2025HackTheBox
WebMediumWindows

HTB — Bastard

Drupal 7 authenticated RCE via Services module REST endpoint. MS15-051 kernel exploit escalates to SYSTEM.

#Drupal#RCE#REST API
May 20, 2022HackTheBox
WebEasyWindows

HTB — Optimum

HttpFileServer 2.3 RCE (CVE-2014-6287) via Rejetto HFS. Windows kernel exploit (MS16-032) for privilege escalation to SYSTEM.

#HFS#CVE-2014-6287#RCE
May 16, 2022HackTheBox
WebEasyWindows

HTB — Devel

Anonymous FTP write access to IIS webroot allows ASPX webshell upload. Local kernel exploit for SYSTEM.

#FTP#IIS#ASPX
May 10, 2022HackTheBox