CVE-2024-12085 PoC — Rsync 缓冲区错误漏洞

Source

https://github.com/Otsutez/cve-2024-12085

Associated Vulnerability

Title:Rsync 缓冲区错误漏洞 (CVE-2024-12085)
Description:Rsync是RsyncProject开源的一款快速且用途广泛的文件复制工具。用于远程文件和本地文件。 Rsync存在缓冲区错误漏洞，该漏洞源于不当的文件校验和比较，导致攻击者能够操控校验和值的长度，进而泄露未初始化的堆栈数据。

Readme

# CVE-2024-12085 Infoleak exploit

Note, this exploit is not versatile! Target module and checksums are hardcoded. Automatic checksum calculation has yet to be implemented.

## Miscellaneous files

`port-forwarding.py` is modified from https://gist.github.com/WangYihang/e7d36b744557e4673d2157499f6c6b5e. It's used to capture traffic between rsync server and client.

`checksum.py` is my attempt at implementing automatic checksum calculation. I didn't have enough time to finish it.

`test.sh` is a script used to test heap allocations in rsync.

File Snapshot


 [4.0K]  /data/pocs/2a3e235a98a94075782815e1fa3e8063996b63a4
├── [ 633]  checksum.py
├── [4.2K]  exploit.py
├── [4.2K]  port-forwarding.py
├── [ 549]  README.md
└── [1.5K]  test.sh

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!