Projects STRLCPY CVE-2023-27326 Files
🤬
Enable build support by adding .buildspec.yml
LICENSE Loading last commit info...
Makefile
README.md
prl_exp.c
run.sh
README.md

Parallels Desktop VM Escape

This repository contains an exploit for a Parallels Desktop vulnerability which has been assigned CVE-2023-27326. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop.

The exploit was tested on Parallels Desktop version 18.0.0 (53049), and the vulnerability was patched in the 18.1.1 (53328) security update.

Vulnerability Details

The specific flaw exists within the Toolgate component. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the current user on the host system.

The full details of the vulnerability can be found in the accompanying blog post.

Credits

The vulnerability was discovered and exploited by Alexandre Adamski of Impalabs. The boiler plate code of the kernel module is taken from RET2 Systems's Pwn2Own 2021 exploit.

License

The contents of this repo are licensed and distributed under the MIT license.

Please wait...
Page is in error, reload to recover