I found that my file hosting server is vulnerable to CVE-2018-1160.
I also found code that exploits this vulnerability, though at the top it says
# Known addresses: This exploit was written against a Netatalk compiled for an # x86_64 Seagate NAS. The addresses below will need to be changed for a different target. preauth_switch_base = '\x60\xb6\x63\x00\x00\x00\x00\x00' # 0x63b6a0. afp_getsrvrparms = '\x60\xb6\x42\x00\x00\x00\x00\x00' # 0x42b660. ... How can I compile addresses for my specific target device?
[link] [comments]
from hacking: security in practice https://ift.tt/vXAPn8B
Comments
Post a Comment