Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-2118 PoC — Samba MS-SAMR和MS-LSAD协议安全漏洞

Source
https://github.com/nickanderson/cfengine-CVE-2016-2118
Associated Vulnerability
Title:Samba MS-SAMR和MS-LSAD协议安全漏洞 (CVE-2016-2118)
Description:The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 mishandle DCERPC connections, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka "BADLOCK."
Description
An example detection and remediation policy.
File Snapshot

 [4.0K]  /data/pocs/4afdeff1c92e7d934dd1393bc71c6afeac96045a
├── [4.0K]  data
│   ├── [ 654]  centos_5.json
│   └── [ 861]  centos_6.json
├── [4.0K]  docs
│   ├── [8.0K]  blog.org
│   ├── [9.0K]  blog.tex
│   └── [4.7K]  implementation_tutorial.org
├── [4.0K]  extras
│   └── [2.2K]  demo_badlock.cf
├── [1.1K]  LICENSE
├── [7.4K]  main.cf
├── [ 358]  Makefile
├── [4.0K]  media
│   ├── [ 57K]  after_samba_update.png
│   ├── [ 90K]  alert_status_vulnerable_hosts.png
│   ├── [ 14K]  badlock.png
│   ├── [127K]  define_alert.png
│   ├── [ 87K]  inventory_report_vulnerable_cves_chart.png
│   ├── [ 85K]  inventory_report_vulnerable_cves.png
│   └── [ 90K]  vulnerable_cves_inventory_attribute.png
└── [4.2K]  README.org

4 directories, 17 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →