Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2017-13089 PoC — GNU Wget: stack overflow in HTTP protocol handling

Source
https://github.com/mzeyong/CVE-2017-13089
Associated Vulnerability
Title:GNU Wget: stack overflow in HTTP protocol handling (CVE-2017-13089)
Description:The http.c:skip_short_body() function is called in some circumstances, such as when processing redirects. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol() to read each chunk's length, but doesn't check that the chunk length is a non-negative number. The code then tries to skip the chunk in pieces of 512 bytes by using the MIN() macro, but ends up passing the negative chunk length to connect.c:fd_read(). As fd_read() takes an int argument, the high 32 bits of the chunk length are discarded, leaving fd_read() with a completely attacker controlled length argument.
Description
CVE-2017-13089
Readme
# CVE-2017-13089
CVE-2017-13089 的payload 的生成程序,此版本需要手动定位出需要执行的栈的地址 # 直接是也是有可能成功的

shellcode 部分中 buf 为利用msf生成出的普通payload 直接替换你所需的payload即可

使用方法如下:
`python shellcode.py&nc -lp 80<payload`
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →