lanaegikova
lanaegikova
/ cve-2018-10993.py
Created
October 18, 2022 18:20
— forked from mgeeky/cve-2018-10993.py
CVE-2018-10993 libSSH authentication bypass exploit
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python3 | |
| # | |
| # CVE-2018-10993 libSSH authentication bypass exploit | |
| # | |
| # The libSSH library has flawed authentication/connection state-machine. | |
| # Upon receiving from connecting client the MSG_USERAUTH_SUCCESS Message | |
| # (as described in RFC4252, sec. 5.1.) which is an authentication response message | |
| # that should be returned by the server itself (not accepted from client) | |
| # the libSSH switches to successful post-authentication state. In such state, |