CVE-2022-4896 PoC — Control de Ciber 资源管理错误漏洞

Source

Associated Vulnerability

Description

CVE-2022-4896 PoCs & exploits 

Readme

# CVE-2022-4896
PoC & exploits for CVE-2022-4896

"Control de Ciber" is a Cybercafe management software. Multiple Denial-of-Service (DoS) vulnerabilities in versions prior to 1.650. An unauthenticated remote attacker can send a carefully crafted request that lead to a service crash.


### Spooler (DoS)
[Spooler exploit](https://github.com/sapellaniz/CVE-2022-4896/blob/main/dos_spooler.py)
![Spooler exploit](https://github.com/sapellaniz/CVE-2022-4896/raw/main/PoC/spooler.gif)

### PNTMedidas (DoS)
[PNTMedidas exploit](https://github.com/sapellaniz/CVE-2022-4896/blob/main/dos_pntmedidas.py)
![PNTMedidas exploit](https://github.com/sapellaniz/CVE-2022-4896/raw/main/PoC/pntmedidas.gif)

### Pedir (DoS)
[Pedir exploit](https://github.com/sapellaniz/CVE-2022-4896/blob/main/dos_pedir.py)
![Pedir exploit](https://github.com/sapellaniz/CVE-2022-4896/raw/main/PoC/pedir.gif)

### HayDiscoA (DoS)
[HayDiscoA exploit](https://github.com/sapellaniz/CVE-2022-4896/blob/main/dos_haydiscoa.py)
![HayDiscoA exploit](https://github.com/sapellaniz/CVE-2022-4896/raw/main/PoC/haydiscoa.gif)

File Snapshot

 [4.0K]  /data/pocs/259e26aac3f421f3e6b60e976abe2ac936f5ff50
├── [ 893]  dos_haydiscoa.py
├── [ 851]  dos_pedir.py
├── [ 991]  dos_pntmedidas.py
├── [ 858]  dos_spooler.py
├── [4.0K]  PoC
│   ├── [2.0M]  haydiscoa.gif
│   ├── [5.5M]  pedir.gif
│   ├── [6.6M]  pntmedidas.gif
│   └── [2.5M]  spooler.gif
└── [1.1K]  README.md

1 directory, 9 files

Remarks