CVE-2022-0918 PoC — Red Hat 389 Directory Server 安全漏洞

Source

https://github.com/NathanMulbrook/CVE-2022-0918

Associated Vulnerability

Title:Red Hat 389 Directory Server 安全漏洞 (CVE-2022-0918)
Description:Red Hat 389 Directory Server（前称Fedora Directory Server）是美国红帽（Red Hat）公司的一款企业级的Linux目录服务器。该服务器完全支持LDAPv3规范，具有可扩展、多主复制等特点。 Red Hat 389 Directory Server 存在安全漏洞，该漏洞源于应用对于LDAP端口访问缺乏有效处理，导致slapd崩溃的分段错误。未经验证的攻击者可以发送TCP连接消息利用该漏洞访问LDAP端口导致拒绝服务。

Description

CVE-2022-0918

Readme

# CVE-2022-0918

Red Hat CVE page: https://access.redhat.com/security/cve/cve-2022-0918

Github issue with patches linked: https://github.com/389ds/389-ds-base/issues/5242

## PoC

The PoC application takes in a single IP, either IPv4 or IPv6 will work. <br />
By default it will send the message to port 389, this can be changed in the source. <br />
The PoC will make a TCP connection to the target and transmit a single packet, the target slapd should then seg fault.

### Useage
```bash
clang poc.c -o poc
./poc [IP Address]
```

File Snapshot


 [4.0K]  /data/pocs/a183a4b32f3e5e363feed66588b35f2ab23dabe5
├── [3.1K]  poc.c
└── [ 533]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!