Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

CVE-2018-0101 PoC — 多款Cisco产品Adaptive Security Appliance Software 安全漏洞

Source
https://github.com/MikeHorn-git/CVE-2018-0101
Associated Vulnerability
Title:多款Cisco产品Adaptive Security Appliance Software 安全漏洞 (CVE-2018-0101)
Description:A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an attempt to double free a region of memory when the webvpn feature is enabled on the Cisco ASA device. An attacker could exploit this vulnerability by sending multiple, crafted XML packets to a webvpn-configured interface on the affected system. An exploit could allow the attacker to execute arbitrary code and obtain full control of the system, or cause a reload of the affected device. This vulnerability affects Cisco ASA Software that is running on the following Cisco products: 3000 Series Industrial Security Appliance (ISA), ASA 5500 Series Adaptive Security Appliances, ASA 5500-X Series Next-Generation Firewalls, ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, ASA 1000V Cloud Firewall, Adaptive Security Virtual Appliance (ASAv), Firepower 2100 Series Security Appliance, Firepower 4110 Security Appliance, Firepower 9300 ASA Security Module, Firepower Threat Defense Software (FTD). Cisco Bug IDs: CSCvg35618.
Description
Cisco ASA CVE-2018-0101 PoC script.
Readme
# About

Cisco ASA CVE-2018-0101 PoC script.

# [Description](https://github.com/MikeHorn-git/CVE-2018-0101#resources)

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code.

# Installation

```bash
git clone https://github.com/MikeHorn-git/CVE-2018-0101.git
cd CVE-2018-0101/
python3 -m venv .venv
source .venv/bin/activate
pip install -r requirements.txt
```

# Usage

```bash
usage: CVE-2018-0101.py [-h] -u URL [-p PORT]

Cisco ASA CVE-2018-0101 PoC script.

options:
  -h, --help            show this help message and exit
  -u URL, --url URL     Target URL
  -p PORT, --port PORT  Port Number (default: 80 for http, 443 for https)
```

# Resources

* [ExploitDB](https://www.exploit-db.com/exploits/43986)
* [Nist](https://nvd.nist.gov/vuln/detail/CVE-2018-0101)
* [Pastebin](https://pastebin.com/YrBcG2Ln)
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →