Jump to content
Sign in to follow this  
BiosHell

OpenSSH 7.6p1 SCP Client - Multiple Vulnerabilities (SSHtranger Things) Exploit

Recommended Posts

 

# Exploit Title: SSHtranger Things

# Exploit Author: Mark E. Haase <mhaase@hyperiongray.com>

# Vendor Homepage: https://www.openssh.com/

# Software Link: [download link if available]

# Version: OpenSSH 7.6p1

# Tested on: Ubuntu 18.04.1 LTS

# CVE : CVE-2019-6111, CVE-2019-6110

 

'''

Title:     SSHtranger Things

Author:    Mark E. Haase <mhaase@hyperiongray.com>

Homepage:  https://www.hyperiongray.com

Date:      2019-01-17

CVE:       CVE-2019-6111, CVE-2019-6110

Advisory:  https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt

Tested on: Ubuntu 18.04.1 LTS, OpenSSH client 7.6p1

 

We have nicknamed this "SSHtranger Things" because the bug is so old it could be

exploited by an 8-bit Demogorgon. Tested on Python 3.6.7 and requires `paramiko`

package.

 

The server listens on port 2222. It accepts any username and password, and it

generates a new host key every time you run it.

  • Upvote 1

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

×
×
  • Create New...