CVE-2022-48474 PoC — Control de Ciber 资源管理错误漏洞

Source

https://github.com/sapellaniz/CVE-2022-48474_CVE-2022-48475

Associated Vulnerability

Title:Control de Ciber 资源管理错误漏洞 (CVE-2022-48474)
Description:Control de Ciber是Ciber Control开源的一款网络控制软件。 Control de Ciber 存在安全漏洞。目前尚无此漏洞的相关信息，请随时关注CNNVD或厂商公告。

Description

CVE-2022-48474 &CVE-2022-48475 PoCs & exploits

Readme

# CVE-2022-48474 & CVE-2022-48475
PoC & exploits for CVE-2022-48474 & CVE-2022-48475

"Control de Ciber" is a Cybercafe management software. Multiple Denial-of-Service (DoS) vulnerabilities in versions prior to 1.650. An unauthenticated remote attacker can send a carefully crafted request that lead to a service crash.


### CVE-2022-48474 (Version DoS)
[Version exploit](https://github.com/sapellaniz/CVE-2022-48474_CVE-2022-48475/blob/main/dos_version.py)
![version_exploit](https://github.com/sapellaniz/CVE-2022-48474_CVE-2022-48475/blob/main/PoC/dos_version.gif)

### CVE-2022-48475 (Print bof)
[Print exploit](https://github.com/sapellaniz/CVE-2022-48474_CVE-2022-48475/blob/main/bof_print.py)
![Print exploit](https://github.com/sapellaniz/CVE-2022-48474_CVE-2022-48475/blob/main/PoC/bof_print.gif)

File Snapshot


 [4.0K]  /data/pocs/5d7e1f4e9e7b40e48580736ad614719da704e973
├── [1.1K]  bof_print.py
├── [ 816]  bof_print.py.tmp
├── [ 993]  dos_version.py
├── [4.0K]  PoC
│   ├── [5.6M]  bof_print.gif
│   └── [1.4M]  dos_version.gif
└── [ 807]  README.md

1 directory, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!