CVE-2017-6736 PoC — Cisco IOS和IOS XE Simple Network Management Protocol子系统缓冲区错误漏洞

Source

https://github.com/plyrthn/CiscoIOSSNMPToolkit

Associated Vulnerability

Title:Cisco IOS和IOS XE Simple Network Management Protocol子系统缓冲区错误漏洞 (CVE-2017-6736)
Description:Cisco IOS和IOS XE都是美国思科（Cisco）公司为其网络设备开发的操作系统。Simple Network Management Protocol（SNMP）subsystem是其中的一个用于网络设备管理信息交换的简单网络管理子系统。 Cisco IOS 12.0版本至12.4版本、15.0版本至15.6版本和IOS XE 2.2版本至3.17版本中的SNMP子系统中存在安全漏洞。远程攻击者可通过向受影响系统发送特制的SNMP数据包利用该漏洞在受影响的系统上执行任意代码或造成系统重启。以下版本

Description

Cisco iOS SNMP Overflow Exploit Toolkit (CVE-2017-6736)

Readme

# CiscoIOSSNMPToolkit

[![forthebadge](http://forthebadge.com/images/badges/made-with-crayons.svg)](http://forthebadge.com)

Cisco iOS SNMP Overflow Exploit Toolkit (CVE-2017-6736)

## CVE-2018-0296?

I have recently submodded CVE-2018-0296, which can be used in junction with this original exploit,
can be used to do reconnaissance and see what is contained in the appliance beforehand.

File Snapshot


 [4.0K]  /data/pocs/cfb023484d2670b9cfbb294a97c06085508af217
├── [4.0K]  cisco-snmp-rce
├── [4.0K]  CVE-2018-0296
├── [2.0K]  doTelnet.py
├── [1.0K]  LICENSE
├── [ 387]  README.md
├── [ 791]  run.py
└── [4.0K]  spectre-chrome

4 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!