matsala
Lambar kiran string_interpret_escape() tana keɓance magudanar ruwa don magudana bisa ainihin girman, kuma ma'anar da aka fallasa ta ƙare a wani yanki a waje da iyakokin buffer. Saboda haka, lokacin ƙoƙarin aiwatar da kirtani shigarwa, yanayi yana tasowa lokacin karanta bayanai daga wani yanki da ke waje da iyakokin da aka keɓe, kuma ƙoƙari na rubuta igiyar da ba ta kuɓuta ba zai iya haifar da rubuce-rubuce fiye da iyakokin ma'ajin.
A cikin saitunan tsoho, ana iya amfani da raunin ta hanyar aika bayanai na musamman zuwa SNI lokacin kafa amintaccen haɗi zuwa uwar garken. Hakanan za'a iya amfani da batun ta hanyar gyaggyarawa kimar ɗan adam a cikin saitunan da aka saita don tabbatar da takardar shaidar abokin ciniki ko lokacin shigo da takaddun shaida. Harin ta hanyar SNI da peerdn yana yiwuwa farawa daga saki
An shirya samfurin amfani don kai hari ta hanyar SNI, yana gudana akan i386 da amd64 gine-gine akan tsarin Linux tare da Glibc. Amfanin yana amfani da bayanan da aka rufe akan wurin tsibi, wanda ke haifar da sake rubuta ƙwaƙwalwar ajiyar da aka adana sunan fayil ɗin log ɗin. Ana maye gurbin sunan fayil da "/../../../../../../../../etc/passwd". Bayan haka, an sake rubuta mabambanta tare da adireshin mai aikawa, wanda aka fara ajiyewa a cikin log ɗin, wanda ke ba ka damar ƙara sabon mai amfani a cikin tsarin.
Sabunta fakitin tare da gyare-gyaren raunin da aka fitar ta hanyar rarrabawa
A matsayin madaidaicin aiki don toshe raunin, zaku iya musaki tallafin TLS ko ƙara
Sashen ACL "acl_smtp_mail":
deny condition = ${idan eq{\\}{${substr{-1}{1}{$tls_in_sni}}}}
deny condition = ${idan eq{\\}{${substr{-1}{1}{$tls_in_peerdn}}}}
source: budenet.ru