CVE-2017-9830 PoC — Code42 CrashPlan 安全漏洞

Source

https://github.com/securifera/CVE-2017-9830

Associated Vulnerability

Title:Code42 CrashPlan 安全漏洞 (CVE-2017-9830)
Description:Code42 CrashPlan是美国Code42 Software公司的一套在线数据备份解决方案。 Code42 CrashPlan 5.4.x版本中存在远程代码执行漏洞。远程攻击者可借助org.apache.commons.ssl.rmi.DateRMI Java类利用该漏洞执行任意代码。

File Snapshot


 [4.0K]  /data/pocs/0f738744bcaf504501247b211e4d5363ce9d6714
├── [3.5K]  build.xml
├── [  82]  manifest.mf
├── [4.0K]  nbproject
│   ├── [ 79K]  build-impl.xml
│   ├── [ 467]  genfiles.properties
│   ├── [4.0K]  private
│   │   ├── [   0]  config.properties
│   │   ├── [ 319]  private.properties
│   │   └── [ 336]  private.xml
│   ├── [2.6K]  project.properties
│   └── [ 572]  project.xml
└── [4.0K]  src
    └── [4.0K]  securifera
        ├── [3.3K]  POC.java
        └── [ 792]  Serializer.java

4 directories, 11 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-9830 PoC — Code42 CrashPlan 安全漏洞

Source

Associated Vulnerability

File Snapshot

Remarks