关联漏洞
标题:OpenSSL 代码问题漏洞 (CVE-2021-4044)Description:OpenSSL是Openssl团队的一个开源的能够实现安全套接层(SSLv2/v3)和安全传输层(TLSv1)协议的通用加密库。该产品支持多种加密算法,包括对称密码、哈希算法、安全散列算法等。 OpenSSL 存在代码问题漏洞,该漏洞源于OpenSSL中的libssl在内部调用客户端上的X509 verify cert()来验证服务器提供的证书,该函数可能返回一个负的返回值来表示内部错误(例如内存不足),这样的负返回值被OpenSSL错误地处理,并将导致IO函数(如SSL connect()或SSL do
介绍
# SSL Checker Script
This repository contains a Python script that checks the OpenSSL version on your system and tests SSL/TLS connections to a user-provided website. The script is designed to identify whether the system is affected by CVE-2021-4044 and to test the handling of SSL errors during the connection process.
## Features
- **OpenSSL Version Check:** The script checks the version of OpenSSL installed on your system and alerts you if it is vulnerable to CVE-2021-4044.
- **SSL Connection Test:** It attempts to establish an SSL connection to a website provided by the user, handling and reporting any SSL errors that occur.
- **User Input:** The script prompts the user to input the target website URL for the SSL connection test.
## Prerequisites
- **Python 3.x:** Ensure that you have Python 3 installed on your system.
- **Required Modules:** The script uses the following Python modules, which are part of the standard library:
- `ssl`
- `socket`
## Usage
1. **Clone the Repository:**
```bash
git clone https://github.com/phirojshah/CVE-2021-4044.git
cd CVE-2021-4044
```
2. **Run the Script:**
```bash
python3 ssl_check.py
```
3. **Enter Website URL:**
When prompted, enter the URL of the website you want to check, for example:
4. **Review the Output:**
The script will output the OpenSSL version, whether it’s affected by CVE-2021-4044, and the result of the SSL handshake with the provided website.
## Example Output
## License
This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.
## Contributing
Contributions are welcome! Please feel free to submit a Pull Request or open an Issue if you find a bug or have a feature request.
## Author
- **Your Name** - [Your GitHub Profile](https://github.com/phirojshah)
## Disclaimer
This script is intended for educational and ethical testing purposes only. Do not use this tool on systems or websites without proper authorization.
文件快照
[4.0K] /data/pocs/432acfcbd2bd265da3cc6aba6c1b904620fcf3e2
├── [1.9K] README.md
└── [1.5K] ssl_check.py
0 directories, 2 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。