CVE-2017-7529 PoC — F5 Nginx 输入验证错误漏洞

Source

Associated Vulnerability

Title:F5 Nginx 输入验证错误漏洞 (CVE-2017-7529)
Description:F5 Nginx是美国F5公司的一款轻量级Web服务器/反向代理服务器及电子邮件（IMAP/POP3）代理服务器，在BSD-like协议下发行。 F5 Nginx 0.5.6版本至1.13.2版本存在输入验证错误漏洞。攻击者利用该漏洞导致敏感信息泄漏。

Description

cve-2017-7529

Readme

��# CVE-2017-7529

[����\�(@portfolio10)](https://github.com/portfolio10/nginx)



## ��}�

 - �� �µ�@� Nginx ���X� Range �ƭ� �̬� ������ ���XՔ� ���� ��}��(CVE-2017-7529)D� ���X��, ��}��X� ��� ٳ��

 - ��}��: Nginx Range ��T� �̬� $�X�\� x�t� ����� p�t�0� x��� ���

 - ƥ�: ��� ���� �|�X� ��� p�t�0�  ǜ�



## Xֽ� l�1� � ��

 - OS : Windows 10

 - Docker, Python

 1. ��� �	�0Ѭ��� ��T� ��1� 

 2. Dockerfile, poc.py, docker-compose.yml �|� ��1�

 3. 'docker compose up -d' ��

 4. http://127.0.0.1:8080 �� ȍ�X��� Nginx �� U�x�

 5. 'pip install requests' |� ��t� DՔ� |�t��췬� $�X�

 6. 'python poc.py http://127.0.0.1:8080' ��X��� ���� � U�x�.



## ����

![PoC �� ����](./result.png)



## ��`�

 - CVE-2017-7529�� Nginx ���� Range �ƭ�D� �ǻ� �̬�X��� ���XՔ� ���\� ���� x��� ��}��t��.

 - �����ǔ� ��� OffsetD� ����X��� ��� p�t�0�|�  ǜ�`� � ���.

 - H��\� ���D� �t���� Nginx ��� ��p�tǸ�, ���� �(� $�� �T�, Range �ƭ��� �\� D�0��� ȩ�XՔ� ��t� ɔ�X��.[

File Snapshot


 [4.0K]  /data/pocs/7b4645fe999bcc9689fb26d7b6874258f8e9a7f6
├── [4.0K]  conf.d
│   └── [ 579]  default.conf
├── [ 142]  docker-compose.yml
├── [ 979]  Dockerfile
├── [ 979]  poc.py
├── [1.5K]  README.md
└── [136K]  result.png

1 directory, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!