CVE-2017-17562
Public Exploits 4
Metasploit · 1 goahead_ldpreload.rb [exploit]
Nuclei · 1 CVE-2017-17562.yaml [template]
In-the-Wild Activity Observed cisa_kev · confirmed
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-17562
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked. This is a result of initializing the environment of forked CGI scripts using untrusted HTTP request parameters in the cgiHandler function in cgi.c. When combined with the glibc dynamic linker, this behaviour can be abused for remote code execution using special parameter names such as LD_PRELOAD. An attacker can POST their shared object payload in the body of the request, and reference it using /proc/self/fd/0.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Embedthis GoAhead 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Embedthis GoAhead是美国Embedthis软件公司的一款嵌入式Web服务器。 Embedthis GoAhead 3.6.5之前的版本中存在安全漏洞。远程攻击者可利用该漏洞执行代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2017-17562
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | CVE-2017-17562 GOAHEAD RCE (Author: Daniel Hodson) | https://github.com/1337g/CVE-2017-17562 | POC Details |
| 2 | Standalone Python 3 exploit for CVE-2017-17562 | https://github.com/ivanitlearning/CVE-2017-17562 | POC Details |
| 3 | None | https://github.com/crispy-peppers/Goahead-CVE-2017-17562 | POC Details |
| 4 | Exploit for CVE-2017-17562 vulnerability, that allows RCE on GoAhead (< v3.6.5) if the CGI is enabled and a CGI program is dynamically linked. | https://github.com/nu11pointer/goahead-rce-exploit | POC Details |
| 5 | PoC for CVE-2017-17562 written in bash | https://github.com/freitzzz/bash-CVE-2017-17562 | POC Details |
| 6 | description: Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2017/CVE-2017-17562.yaml | POC Details |
| 7 | None | https://github.com/Threekiii/Awesome-POC/blob/master/%E4%B8%AD%E9%97%B4%E4%BB%B6%E6%BC%8F%E6%B4%9E/GoAhead%20Server%20%E8%BF%9C%E7%A8%8B%E5%91%BD%E4%BB%A4%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E%20CVE-2017-17562.md | POC Details |
| 8 | https://github.com/vulhub/vulhub/blob/master/goahead/CVE-2017-17562/README.md | POC Details | |
| 9 | PoC for CVE-2017-17562 written in bash | https://github.com/joaomagfreitas/bash-CVE-2017-17562 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-17562
请登录查看更多情报信息。
- https://github.com/embedthis/goahead/issues/249x_refsource_MISC
- https://github.com/elttam/advisories/tree/master/CVE-2017-17562x_refsource_MISC
- http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.htmlx_refsource_CONFIRM
- https://www.elttam.com.au/blog/goahead/x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2017-17562
Same Patch Batch · n/a · 2017-12-12 · 12 CVEs total
| CVE-2017-17563 | Xen 安全漏洞 | |
| CVE-2017-17564 | Xen 安全漏洞 | |
| CVE-2017-17565 | Xen 安全漏洞 | |
| CVE-2017-17566 | Xen 安全漏洞 | |
| CVE-2017-1000385 | Ericsson Erlang otp TLS server 安全漏洞 | |
| CVE-2017-17560 | Western Digital MyCloud PR4100 Web管理组件安全漏洞 | |
| CVE-2017-17561 | SeaCMS 安全漏洞 | |
| CVE-2017-17558 | Linux kernel USB core子系统缓冲区错误漏洞 | |
| CVE-2017-17554 | aubio 安全漏洞 | |
| CVE-2017-17555 | FFmpeg和aubio FFmpeg libswresample 安全漏洞 | |
| CVE-2017-17553 | Mobotap Dolphin Browser for Android 安全漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2017-17562
No comments yet