CVE-2020-11932 PoC — Canonical Subiquity 日志信息泄露漏洞

Source

https://github.com/code-developers/CVE-2020-11932

Associated Vulnerability

Title:Canonical Subiquity 日志信息泄露漏洞 (CVE-2020-11932)
Description:Canonical Subiquity是英国科能（Canonical）公司的一款Ubuntu服务器安装程序。 Canonical Subiquity（使用在Ubuntu Server）中存在日志信息泄露漏洞。该漏洞源于网络系统或产品的日志文件非正常输出。

Readme

# CVE-2020-11932
 Double-Free bug in WhatsApp exploit poc.
 
 #Note: Make sure to set the listner ip in exploit.c inorder to get shell
 
 - nc -lvp 1337 or whatever port.
 
 - and then compile.
 
 - make
 
 - or 
 
 - gcc -o exploit egif_lib.c exploit.c
 
 - then run ./exploit and save the content to <filename>.gif
 
 - and send to victim.
 
 ### Source
 https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/.
 
 ### Poc_Video
 https://drive.google.com/file/d/1XP7K5zkKEhmbEONvRpjrkTQ5pwpBc6G_/view?usp=sharing

File Snapshot


 [4.0K]  /data/pocs/a4df09326d24a04d0d6ea2ab1a74c323c3b68445
├── [3.3K]  egif_lib.c
├── [5.2K]  exploit.c
├── [ 11K]  gif_lib.h
├── [  42]  MakeFile
└── [ 544]  README.md

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!