CVE-2020-8597 PoC — ppp 缓冲区错误漏洞

Source

https://github.com/WinMin/CVE-2020-8597

Associated Vulnerability

Title:ppp 缓冲区错误漏洞 (CVE-2020-8597)
Description:ppp是Paul PPP Package开源的一个实现点对点协议（ppp）的库。 ppp 2.4.2版本至2.4.8版本中的pppd的‘eap_request’和‘eap_response ’函数存在缓冲区错误漏洞，该漏洞源于程序没有正确检查边界。远程攻击者可借助特制EAP数据包利用该漏洞在系统上执行任意代码，或导致内存损坏。

Description

CVE-2020-8597 pppd buffer overflow poc

Readme

# CVE-2020-8597

I use two virtual machines to test on the same computer.One as server and one as client，and they all use NAT for network connection.
So they are all under the ens33 network card..

## set up a pppoe-server

You can set up the service according to the following article

https://askubuntu.com/questions/934685/pppoe-server-on-ubuntu-14-04-not-working-peer-xxx-failed-chap-session-verifica

http://www.howtodoityourself.org/pppoe-server-how-to-do-it-yourself.html

open the debug mode and set log file:
Add the following to the `/etc/ppp/pppoe-server-options` file
```
debug
logfile /var/log/pppoe-server-log
```

## set up a ppoe client

Start the clietn:

```bash
sudo pppoeconf 
```

## Screenshot

![image-20200308221134194](./img/crash.png)

## Ref

https://github.com/marcinguy/CVE-2020-8597

File Snapshot


 [4.0K]  /data/pocs/1aa128dc0c6070f72df73981fcdcc7cbc166a684
├── [4.0K]  img
│   ├── [357K]  crash.png
│   └── [142K]  result.png
├── [1.6K]  PoC.py
└── [ 815]  README.md

1 directory, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!