Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-5180 PoC — c-ares 基于堆的缓冲区错误漏洞

Source
https://github.com/pouriam23/final-CVE-2016-5180
Associated Vulnerability
Title:c-ares 基于堆的缓冲区错误漏洞 (CVE-2016-5180)
Description:c-ares是一个用于异步执行DNS请求和名称解析的C库。 c-ares 1.12.0之前的1.x版本中的‘ares_create_query’函数存在基于堆的缓冲区溢出漏洞。远程攻击者可借助特制的主机名利用该漏洞造成拒绝服务(越边界写入)或执行任意代码。
File Snapshot

 [4.0K]  /data/pocs/8f786c106efd8f2bb4dcc0cdadf871853407107b
├── [4.0K]  C node
│   ├── [ 301]  package.json
│   └── [1.0K]  server.js
└── [4.0K]  N node
    ├── [ 301]  package.json
    └── [1.0K]  server.js

2 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.