# N/A
## 概述
distcc 2.x版本在未配置限制服务器端口访问的情况下,允许远程攻击者通过编译任务执行任意命令,因为服务器在执行这些任务时没有进行授权检查。
## 影响版本
- distcc 2.x
- XCode 1.5 及其他使用该版本distcc的软件
## 细节
当distcc 2.x版本的服务器端口未受到访问限制时,攻击者可以通过提交编译任务来执行任意命令。服务器在处理这些编译任务时不会进行身份验证或授权检查,从而使攻击者能够利用这一漏洞远程执行恶意代码。
## 影响
此漏洞可能允许远程攻击者执行任意命令,从而导致系统被完全控制或数据泄露等问题。需及时限制服务器端口访问并进行必要的配置更改以缓解风险。
| # | POC 描述 | 源链接 | 神龙链接 |
|---|---|---|---|
| 1 | None | https://github.com/crypticdante/distccd_rce_CVE-2004-2687 | POC详情 |
| 2 | CVE-2004-2687 DistCC Daemon Command Execution | https://github.com/k4miyo/CVE-2004-2687 | POC详情 |
| 3 | Remote Command Execution exploit for vulnerability CVE-2004-2687 in DistCC Daemon v1 | https://github.com/ss0wl/CVE-2004-2687_distcc_v1 | POC详情 |
| 4 | None | https://github.com/H3xL00m/distccd_rce_CVE-2004-2687 | POC详情 |
| 5 | None | https://github.com/n3ov4n1sh/distccd_rce_CVE-2004-2687 | POC详情 |
| 6 | None | https://github.com/c0d3cr4f73r/distccd_rce_CVE-2004-2687 | POC详情 |
| 7 | None | https://github.com/Sp3c73rSh4d0w/distccd_rce_CVE-2004-2687 | POC详情 |
| 8 | None | https://github.com/0xwh1pl4sh/distccd_rce_CVE-2004-2687 | POC详情 |
| 9 | None | https://github.com/N3rdyN3xus/distccd_rce_CVE-2004-2687 | POC详情 |
| 10 | None | https://github.com/NyxByt3/distccd_rce_CVE-2004-2687 | POC详情 |
| 11 | None | https://github.com/h3xcr4ck3r/distccd_rce_CVE-2004-2687 | POC详情 |
| 12 | None | https://github.com/n3rdh4x0r/distccd_rce_CVE-2004-2687 | POC详情 |
| 13 | distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote attackers to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks. | https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2004/CVE-2004-2687.yaml | POC详情 |