ProHoster > Π‘Π»ΠΎΠ³ > xov xwm hauv internet > Vulnerability nyob rau hauv pppd thiab lwIP uas tso cai rau tej thaj chaw deb code execution nrog lub hauv paus cai

Vulnerability nyob rau hauv pppd thiab lwIP uas tso cai rau tej thaj chaw deb code execution nrog lub hauv paus cai

Hauv pob ppd txheeb xyuas yooj yim (CVE-2020-8597), tso cai rau koj ua tiav koj cov cai los ntawm kev xa cov ntawv thov kev lees paub tshwj xeeb rau cov tshuab siv PPP (Point-to-Point Protocol) lossis PPPoE (PPP dhau Ethernet) raws tu qauv. Cov kev cai no feem ntau yog siv los ntawm cov chaw muab kev pabcuam los teeb tsa kev sib txuas ntawm Ethernet lossis DSL, thiab kuj tseem siv rau qee qhov VPNs (piv txwv li, pptpd thiab openfortivpn). Xyuas seb koj lub tshuab puas cuam tshuam los ntawm qhov teeb meem npaj exploit prototype.

Qhov tsis zoo yog tshwm sim los ntawm qhov tsis txaus hauv kev ua raws li EAP (Extensible Authentication Protocol) authentication raws tu qauv. Qhov kev tawm tsam tuaj yeem ua tiav nyob rau theem kev lees paub ua ntej los ntawm kev xa ib pob ntawv nrog hom EAPT_MD5CHAP, suav nrog lub npe ntev heev uas tsis haum rau hauv kev faib tsis pub. Vim muaj kab laum nyob rau hauv cov cai rau kev tshuaj xyuas qhov luaj li cas ntawm lub rhostname teb, tus neeg tawm tsam tuaj yeem sau cov ntaub ntawv tawm sab nraud ntawm qhov tsis nyob ntawm pawg thiab ua tiav cov chaw taws teeb ua tiav ntawm lawv cov cai nrog cov cai hauv paus. Qhov tsis zoo tshwm sim nws tus kheej ntawm tus neeg rau zaub mov thiab cov neeg siv khoom, piv txwv li. Tsis tsuas yog tus neeg rau zaub mov tuaj yeem tawm tsam, tab sis kuj yog tus neeg siv khoom sim txuas mus rau lub server tswj los ntawm tus neeg tawm tsam (piv txwv li, tus neeg tawm tsam tuaj yeem ua ntej hack lub server los ntawm qhov tsis zoo, thiab tom qab ntawd pib tua cov neeg siv khoom sib txuas).

Qhov teeb meem cuam tshuam rau versions ppd ua los ntawm 2.4.2 mus rau 2.4.8 suav nrog thiab tshem tawm hauv daim ntawv thaj. Vulnerability kuj cuam ​​tshuam pawg lwIP, tab sis lub neej ntawd teeb tsa hauv lwIP tsis pab txhawb EAP.

Cov xwm txheej ntawm kev kho qhov teeb meem hauv cov khoom siv faib khoom tuaj yeem pom ntawm nplooj ntawv no: Debian, Ubuntu, RHEL, Fedora, SUSE, OpenWRT, Koov, NetBSD. Ntawm RHEL, OpenWRT thiab SUSE, lub pob pppd tau tsim nrog "Stack Smashing Protection" tiv thaiv tau qhib (tus "-fstack-protector" hom hauv gcc), uas txwv kev siv tsis ua haujlwm. Ntxiv nrog rau kev faib tawm, qhov tsis zoo kuj tau lees paub hauv qee cov khoom lag luam Cisco (Call Manager) TP LINK thiab Synology (DiskStation Manager, VisualStation VS960HD thiab Router Manager) siv pppd lossis lwIP code.

Tau qhov twg los: opennet.ru

Ntxiv ib saib