CVE-2021-40346 PoC — Haproxy HAProxy 输入验证错误漏洞

Source

https://github.com/donky16/CVE-2021-40346-POC

Associated Vulnerability

Title:Haproxy HAProxy 输入验证错误漏洞 (CVE-2021-40346)
Description:An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs.

Description

CVE-2021-40346 integer overflow enables http smuggling

Readme

# CVE-2021-40346-POC #

CVE-2021-40346 integer overflow enables http smuggling

整数溢出导致的http请求走私

中文分析：[HAProxy请求走私漏洞（CVE-2021-40346）分析](https://forum.butian.net/share/694)

Reference: https://jfrog.com/blog/critical-vulnerability-in-haproxy-cve-2021-40346-integer-overflow-enables-http-smuggling/

## Build ##
```sh
git clone https://github.com/donky16/CVE-2021-40346-POC.git
cd CVE-2021-40346-POC 
docker-compose build 
docker-compose up -d
```
## Exploit ##

![image-20210910162235855](ReadMe.assets/image-20210910162235855.png)

File Snapshot


 [4.0K]  /data/pocs/416b2bcf95d4861702c555fbff7e21ba5fbae5d0
├── [4.0K]  config
│   └── [ 312]  haproxy.cfg
├── [ 201]  docker-compose.yml
├── [ 239]  Dockerfile
├── [ 11K]  LICENSE
├── [ 292]  main.py
├── [ 413]  payload
├── [4.0K]  ReadMe.assets
│   └── [ 20K]  image-20210910162235855.png
└── [ 605]  README.md

2 directories, 8 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!