28

GitHub - SoledaD208/CVE-2018-10933: CVE-2018-10933 very simple POC

5 years ago

source link: https://github.com/SoledaD208/CVE-2018-10933
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.

README.md

CVE-2018-10933

to test this code:

get vulnerable version of libssh at homepage: https://www.libssh.org/files/0.7/libssh-0.7.4.tar.xz
uncompress and build, then go to example directory, there's a simple sshd server using libssh name: samplesshd-cb

run this simple sshd by command: $ samplesshd-cb 127.0.0.1 -p 2222

run my code, output will be: Allocated session channel Allocated shell mean that i can bypass authentication and spawn a shell without any credential

Recommend

About Joyk

Aggregate valuable and interesting links.
Joyk means Joy of geeK