# N/A
## 漏洞概述
在 OpenSSH 9.6 之前版本中,如果用户名或主机名包含 shell 元字符,并且这些名称在某些情况下被扩展令牌引用,则可能发生 OS 命令注入。
## 影响版本
- 所有 OpenSSH 版本 < 9.6
## 细节
- 用户名或主机名包含 shell 元字符。
- 扩展令牌在某些情况下引用这些用户名或主机名。
- 例如,不受信的 Git 仓库可以包含具有 shell 元字符的用户或主机名的子模块。
## 影响
- 可能导致 OS 命令注入攻击。
# | POC 描述 | 源链接 | 神龙链接 |
---|---|---|---|
1 | None | https://github.com/FeatherStark/CVE-2023-51385 | POC详情 |
2 | None | https://github.com/watarium/poc-cve-2023-51385 | POC详情 |
3 | This is a test | https://github.com/Tachanka-zz/CVE-2023-51385_test | POC详情 |
4 | OpenSSH ProxyCommand RCE | https://github.com/Le1a/CVE-2023-51385 | POC详情 |
5 | 一个验证对CVE-2023-51385 | https://github.com/zls1793/CVE-2023-51385_test | POC详情 |
6 | CVE-2023-51385;OpenSSH ProxyCommand RCE;OpenSSH <9.6 命令注入漏洞poc | https://github.com/WLaoDuo/CVE-2023-51385_poc-test | POC详情 |
7 | None | https://github.com/zhulin2/testCVE-2023-51385 | POC详情 |
8 | CVE-2023-51385_test-star-main | https://github.com/siyi-star/CVE-2023-51385_test-star-main | POC详情 |
9 | CVE-2023-51385测试POC | https://github.com/N0rther/CVE-2023-51385_TT | POC详情 |
10 | 一个验证对CVE-2023-51385 | https://github.com/power1314520/CVE-2023-51385_test | POC详情 |
11 | CVE-2023-51385 PoC Exploit | https://github.com/WOOOOONG/CVE-2023-51385 | POC详情 |
12 | None | https://github.com/uccu99/CVE-2023-51385 | POC详情 |
13 | None | https://github.com/julienbrs/exploit-CVE-2023-51385 | POC详情 |
14 | None | https://github.com/julienbrs/malicious-exploit-CVE-2023-51385 | POC详情 |
15 | None | https://github.com/Sonicrrrr/CVE-2023-51385 | POC详情 |
16 | CVE-2023-51385 | https://github.com/farliy-hacker/CVE-2023-51385 | POC详情 |
17 | CVE-2023-51385-save | https://github.com/farliy-hacker/CVE-2023-51385-save | POC详情 |
18 | CVE-2023-51385 的exp | https://github.com/2048JiaLi/CVE-2023-51385 | POC详情 |
19 | Proof of conept to exploit vulnerable proxycommand configurations on ssh clients (CVE-2023-51385) | https://github.com/vin01/poc-proxycommand-vulnerable | POC详情 |
20 | 一个验证对CVE-2023-51385 | https://github.com/LtmThink/CVE-2023-51385_test | POC详情 |
21 | CVE-2023-51385 | https://github.com/thinkliving2020/CVE-2023-51385- | POC详情 |
22 | This is a test | https://github.com/GoodPeople-ZhangSan/CVE-2023-51385_test | POC详情 |
23 | None | https://github.com/c0deur/CVE-2023-51385 | POC详情 |
24 | None | https://github.com/endasugrue/CVE-2023-51385_poc | POC详情 |
25 | None | https://github.com/MiningBot-eth/CVE-2023-51385-exploit | POC详情 |
26 | None | https://github.com/Featherw1t/CVE-2023-51385_test | POC详情 |
27 | None | https://github.com/GroundCTL2MajorTom/CVE-2023-51385POC | POC详情 |
28 | None | https://github.com/GroundCTL2MajorTom/CVE-2023-51385P-POC | POC详情 |