CVE-2018-1207 PoC — Dell EMC iDRAC7和iDRAC8 代码注入漏洞

Source

https://github.com/un4gi/CVE-2018-1207

Associated Vulnerability

Title:Dell EMC iDRAC7和iDRAC8 代码注入漏洞 (CVE-2018-1207)
Description:Dell EMC iDRAC7和iDRAC8都是美国戴尔（Dell）公司的包含硬件和软件的系统管理解决方案。该方案为Dell PowerEdge系统提供远程管理、崩溃系统恢复和电源控制等功能。 Dell EMC iDRAC7和iDRAC8 2.52.52.52之前版本中存在安全漏洞。远程攻击者可借助CGI变量利用该漏洞执行代码。

Description

A proof of concept for CVE-2018-1207.

Readme

# CVE-2018-1207
A proof of concept for CVE-2018-1207.

## Requirements

In order to run, you will need to install the sh4-linux-gnu-gcc-9 package.

For Ubuntu 20.04:
```bash
apt install build-essential
wget http://security.ubuntu.com/ubuntu/pool/universe/g/gcc-9-cross-ports/gcc-9-sh4-linux-gnu_9.4.0-1ubuntu1~20.04cross1_amd64.deb
dpkg -i gcc-9-sh4-linux-gnu_9.4.0-1ubuntu1-20.04cross1_amd64.deb
```

## Install

```bash
git clone https://github.com/un4gi/CVE-2018-1207.git
cd CVE-2018-1207
go build .
```


## Usage

```bash
./CVE-2018-1207 -t <target> -p <port>
```

## References

https://www.youtube.com/watch?v=mosERjbrgdo  
https://www.immunityinc.com/downloads/The-Unbearable-Lightness-of-BMC-wp.pdf  
https://i.blackhat.com/us-18/Wed-August-8/us-18-Waisman-Soler-The-Unbearable-Lightness-of-BMC.pdf

File Snapshot


 [4.0K]  /data/pocs/3093df4576e67a67eeea1d853942f438d0b7b1ad
├── [4.0K]  bin
├── [  47]  go.mod
├── [1.0K]  LICENSE
├── [6.5K]  main.go
└── [ 810]  README.md

1 directory, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!