liamg
diff --git a/‎pkg/exploits/cve20214034/exploit.go‎
Lines changed: 23 additions & 0 deletions b/‎pkg/exploits/cve20214034/exploit.go‎
Lines changed: 23 additions & 0 deletions
diff --git a/‎pkg/exploits/exploit_docker_socket.go‎
Lines changed: 0 additions & 323 deletions b/‎pkg/exploits/exploit_docker_socket.go‎
Lines changed: 0 additions & 323 deletions
@@ -7,6 +7,8 @@ import (
 	"os"
 	"os/exec"
 	"path/filepath"
+	"strconv"
+	"strings"
 
 	"github.com/google/uuid"
 	"github.com/liamg/traitor/pkg/logger"
@@ -34,6 +36,27 @@ func (v *cve20214034Exploit) IsVulnerable(ctx context.Context, s *state.State, l
 		return false
 	}
 
+	data, err := exec.Command("pkexec", "--version").Output()
+	if err != nil {
+		return false
+	}
+
+	bits := strings.Split(string(data), " ")
+	last := bits[len(bits)-1]
+
+	versionBits := strings.Split(last, ".")
+	if versionBits[0] != "0" || len(versionBits) <= 1 {
+		return false
+	}
+	minorStr := strings.Split(versionBits[1], "-")[0]
+	minor, err := strconv.Atoi(minorStr)
+	if err != nil {
+		return false
+	}
+	if minor > 105 {
+		return false
+	}
+
 	if err := v.Exploit(ctx, s, log.Silenced(), payloads.Payload("true")); err != nil {
 		return false
 	}