{"uuid": "ec5dc530-d6f8-4d48-bac5-b5c785d48178", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-6387", "type": "published-proof-of-concept", "source": "https://t.me/ANONYMOUSDARK_official/34", "content": "#\u0627\u062e\u0628\u0627\u0631 #\u062e\u0628\u0631\n\ud83d\udd34 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062c\u062f\u06cc\u062f OpenSSH \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 RCE \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 root \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627\u06cc \u0644\u06cc\u0646\u0648\u06a9\u0633 \u0634\u0648\u062f\n\n\u2757\ufe0f \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062d\u06cc\u0627\u062a\u06cc \u062f\u0631 OpenSSH \u06a9\u0634\u0641 \u0634\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632\u0627\u062a \u0631\u06cc\u0634\u0647 \u0631\u0627 \u0628\u062f\u0648\u0646 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0631\u0648\u06cc \u0633\u0631\u0648\u0631 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0646\u062f.\n\n\ud83d\udccc \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u0627 \u06a9\u062f regreSSHion \u0628\u0647 \u0634\u0646\u0627\u0633\u0647\u00a0 CVE-2024-6387 \u0627\u062e\u062a\u0635\u0627\u0635 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u06cc\u0646 \u062f\u0631 \u0645\u0648\u0644\u0641\u0647 \u0633\u0631\u0648\u0631 OpenSSH\u060c \u0647\u0645\u0686\u0646\u06cc\u0646 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 sshd \u0634\u0646\u0627\u062e\u062a\u0647 \u0645\u06cc \u0634\u0648\u062f\u060c \u06a9\u0647 \u0628\u0631\u0627\u06cc \u06af\u0648\u0634 \u062f\u0627\u062f\u0646 \u0628\u0647 \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u0627\u0632 \u0647\u0631 \u06cc\u06a9 \u0627\u0632 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0644\u0627\u06cc\u0646\u062a \u0637\u0631\u0627\u062d\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a.\n\n\ud83d\udccc \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u06a9\u0647 \u06cc\u06a9 race condition \u062f\u0631 \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647 \u0633\u06cc\u06af\u0646\u0627\u0644 \u062f\u0631 \u0633\u0631\u0648\u0631 OpenSSH (sshd) \u0627\u0633\u062a\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE) \u0628\u062f\u0648\u0646 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0631\u0627 \u0628\u0647\u200c\u0639\u0646\u0648\u0627\u0646 root \u062f\u0631 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627\u06cc \u0644\u06cc\u0646\u0648\u06a9\u0633 \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 glibc \u0645\u06cc\u200c\u062f\u0647\u062f.\n\n\n\u26a0\ufe0f \u0647\u0645\u06cc\u0646 \u0627\u0644\u0627\u0646 \u06a9\u0644\u06cc \u0633\u0631\u0648\u0631 \u062f\u0631 \u0627\u06cc\u0631\u0627\u0646 \u0628\u0647 \u0627\u062d\u062a\u0645\u0627\u0644 \u0632\u06cc\u0627\u062f \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0628\u0647 \u0627\u06cc\u0646 \u062d\u0641\u0631\u0647 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0647\u0633\u062a\u0646 \u067e\u0633 \u0644\u0637\u0641\u0627 \u067e\u0686 \u06a9\u0646\u06cc\u062f (\u0628\u0627\u0644\u0627\u06cc \u06f2\u06f0\u06f0 \u0647\u0632\u0627\u0631 \u0633\u0631\u0648\u0631)\n\n\ud83d\udee1 \u0627\u06a9\u06cc\u062f\u0627\u064b \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc \u06a9\u0646\u06cc\u0645 \u0628\u0631\u0627\u06cc \u0645\u062d\u0627\u0641\u0638\u062a \u0627\u0632 \u0633\u0631\u0648\u0631 \u062e\u0648\u062f\u060c \u0633\u0631\u0648\u06cc\u0633 \u0631\u0627 \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062f\u0633\u062a\u0648\u0631 \u0632\u06cc\u0631 \u0628\u0647 \u0631\u0648\u0632 \u06a9\u0646\u06cc\u062f:\n\napt update &amp;&amp; apt install --only-upgrade openssh-client openssh-server openssh-sftp-server -y\n\n\u0628\u0631\u0627\u06cc \u0633\u06cc\u0633\u062a\u0645 \u0647\u0627\u06cc RHEL :\nsudo yum update &amp;&amp; sudo yum install openssh-server openssh-clients openssh-sftp-server -y\n\n\ud83d\udcce POC: https://github.com/zgzhang/cve-2024-6387-poc\n\ud83d\udcce analysis: https://pentest-tools.com/blog/regresshion-cve-2024-6387", "creation_timestamp": "2024-08-25T23:54:52.000000Z"}