Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-8970 PoC — LibreSSL 安全漏洞

Source
https://github.com/tiran/CVE-2018-8970
Associated Vulnerability
Title:LibreSSL 安全漏洞 (CVE-2018-8970)
Description:LibreSSL是OpenBSD项目开发的一个OpenSSL加密软件库的分支,也是安全套接层(SSL)和传输层安全(TLS)协议的开源实现。 LibreSSL 2.7.1之前的2.7.0版本中的lib/libcrypto/x509/x509_vpm.c文件的‘int_x509_param_set_hosts’函数存在安全漏洞,该漏洞源于程序不支持长度为零的名称。攻击者可借助特制的证书利用该漏洞冒充服务器并获取敏感信息。
Description
Demo for https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8970
Readme
Demo for CVE-2018-8970

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8970
File Snapshot

 [4.0K]  /data/pocs/08d9b13cc66836863985e640174174a5a17a02d2
├── [3.0K]  cve2018_8970_demo.c
├── [ 307]  Makefile
└── [  85]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.