SoledaD208/CVE-2018-10933

Stars
129
Rank 279,262 (Top 6 %)
Language
Python
Created about 6 years ago
Updated about 6 years ago

SoledaD208/CVE-2018-10933

SoledaD208

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

CVE-2018-10933 very simple POC

CVE-2018-10933

to test this code:

get vulnerable version of libssh at homepage: https://www.libssh.org/files/0.7/libssh-0.7.4.tar.xz
uncompress and build, then go to example directory, there's a simple sshd server using libssh name: samplesshd-cb

run this simple sshd by command: $ samplesshd-cb 127.0.0.1 -p 2222

run my code, output will be: Allocated session channel Allocated shell mean that i can bypass authentication and spawn a shell without any credential