28
GitHub - SoledaD208/CVE-2018-10933: CVE-2018-10933 very simple POC
source link: https://github.com/SoledaD208/CVE-2018-10933
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
README.md
CVE-2018-10933
to test this code:
- get vulnerable version of libssh at homepage: https://www.libssh.org/files/0.7/libssh-0.7.4.tar.xz
- uncompress and build, then go to example directory, there's a simple sshd server using libssh name: samplesshd-cb
run this simple sshd by command: $ samplesshd-cb 127.0.0.1 -p 2222
- run my code, output will be: Allocated session channel Allocated shell mean that i can bypass authentication and spawn a shell without any credential
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK