CVE-2018-11235 PoC — Git 安全漏洞

Source

Associated Vulnerability

Title:Git 安全漏洞 (CVE-2018-11235)
Description:Git是美国软件开发者林纳斯-托瓦兹（Linus Torvalds）所研发的一套免费、开源的分布式版本控制系统。 Git中存在安全漏洞，该漏洞源于在将子模块名称添加到$GIT_DIR/modules目录下时，程序没有正确的验证来自不可信.gitmodules文件的子模块名称。远程攻击者可借助特制的.gitmodules文件利用该漏洞执行任意代码。以下版本受到影响：Git 2.13.7之前版本，2.14.4之前的2.14.x版本，2.15.2之前的2.15.x版本，2.16.4之前的2.16.x版本，2.1

Description

CVE-2018-11235: Git Submodule RCE

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!