Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2004-2687 PoC — Apple Xcode Tools 配置错误漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2004/CVE-2004-2687.yaml
Associated Vulnerability
Title:Apple Xcode Tools 配置错误漏洞 (CVE-2004-2687)
Description:用于XCode 1.5版本及其他版本的distcc 2.x版本配置对于服务器端口的访问不限制时,远程攻击者可以借助编辑工作执行任意命令,该漏洞被无授权检查的服务器执行。
Description
distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote attackers to execute arbitrary commands via compilation jobs, which are executed by the server without authorization checks.
File Snapshot

 id: CVE-2004-2687

info:
  name: Distccd v1 - Remote Code Execution
  author: pussycat0x
  severity:

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.