Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-1897 PoC — FFmpeg 信息泄露漏洞

Source
https://github.com/vulhub/vulhub/blob/master/ffmpeg/CVE-2016-1897/README.md
Associated Vulnerability
Title:FFmpeg 信息泄露漏洞 (CVE-2016-1897)
Description:FFmpeg是FFmpeg团队的一套可录制、转换以及流化音视频的完整解决方案。 FFmpeg 2.x版本中存在安全漏洞。远程攻击者可通过使用HTTP Live Streaming(HLS)M3U8文件中的concat协议,导致外部HTTP请求的URL字符串中包含本地文件的第一行利用该漏洞实施跨源攻击,读取任意文件。
File Snapshot

 # FFmpeg Arbitrary File Read and SSRF (CVE-2016-1897/CVE-2016-1898)

[中文版本(Chinese version)](README.

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.