rules icon indicating copy to clipboard operation
rules copied to clipboard
verified publisher icon Yara-Rules

Create CVE-2022-0847.yar

Open vittring opened this issue 3 years ago • 2 comments

CVE-2022-0847 PoC Rule

Date: 2022-03-09 Exploit name: CVE_2022_0847 (a/k/a Dirty Cow 2.0) Reference: https://haxx.in/files/dirtypipez.c Description: Detect local privilege escalation vulnerability Dirty Pipe[z]

vittring avatar Apr 03 '22 06:04 vittring

Please, fix the rule it needs curly braces.

Xumeiquer avatar Apr 12 '22 15:04 Xumeiquer

Please, fix the rule it needs curly braces.

Fixed. Let me know if this can be refined further, I'll make it happen.

vittring avatar Apr 12 '22 22:04 vittring