Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2013-2217 PoC — Suds cache.py文件安全漏洞

Source
https://github.com/Osirium/suds
Associated Vulnerability
Title:Suds cache.py文件安全漏洞 (CVE-2013-2217)
Description:cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name in /tmp/suds/.
Description
 Clone of suds 0.4 + suds-0.4-CVE-2013-2217.patch
File Snapshot

 [4.0K]  /data/pocs/a20811cd760148ccd98c00d4a4c1d78b07fe3934
├── [7.5K]  LICENSE
├── [2.0K]  makefile
├── [ 227]  PKG-INFO
├── [9.2K]  python-suds.spec
├── [ 28K]  README
├── [1.3K]  sdist
├── [  83]  setup.cfg
├── [1.2K]  setup.py
├── [4.0K]  suds
│   ├── [4.0K]  bindings
│   │   ├── [ 19K]  binding.py
│   │   ├── [5.7K]  document.py
│   │   ├── [ 917]  __init__.py
│   │   ├── [4.1K]  multiref.py
│   │   └── [3.1K]  rpc.py
│   ├── [4.1K]  builder.py
│   ├── [8.7K]  cache.py
│   ├── [ 25K]  client.py
│   ├── [4.2K]  __init__.py
│   ├── [2.0K]  metrics.py
│   ├── [4.0K]  mx
│   │   ├── [9.0K]  appender.py
│   │   ├── [1.6K]  basic.py
│   │   ├── [4.7K]  core.py
│   │   ├── [4.5K]  encoded.py
│   │   ├── [1.8K]  __init__.py
│   │   ├── [9.3K]  literal.py
│   │   └── [4.0K]  typer.py
│   ├── [5.0K]  options.py
│   ├── [7.1K]  plugin.py
│   ├── [ 16K]  properties.py
│   ├── [5.1K]  reader.py
│   ├── [ 15K]  resolver.py
│   ├── [4.0K]  sax
│   │   ├── [5.7K]  attribute.py
│   │   ├── [ 10K]  date.py
│   │   ├── [1.8K]  document.py
│   │   ├── [ 36K]  element.py
│   │   ├── [2.7K]  enc.py
│   │   ├── [3.2K]  __init__.py
│   │   ├── [4.4K]  parser.py
│   │   └── [3.5K]  text.py
│   ├── [8.3K]  servicedefinition.py
│   ├── [2.9K]  serviceproxy.py
│   ├── [2.2K]  soaparray.py
│   ├── [ 18K]  store.py
│   ├── [ 11K]  sudsobject.py
│   ├── [4.0K]  transport
│   │   ├── [6.0K]  http.py
│   │   ├── [3.5K]  https.py
│   │   ├── [3.8K]  __init__.py
│   │   └── [2.2K]  options.py
│   ├── [4.0K]  umx
│   │   ├── [2.7K]  attrlist.py
│   │   ├── [1.4K]  basic.py
│   │   ├── [7.4K]  core.py
│   │   ├── [4.1K]  encoded.py
│   │   ├── [1.8K]  __init__.py
│   │   └── [4.5K]  typed.py
│   ├── [ 31K]  wsdl.py
│   ├── [5.8K]  wsse.py
│   └── [4.0K]  xsd
│       ├── [4.0K]  deplist.py
│       ├── [6.2K]  doctor.py
│       ├── [2.9K]  __init__.py
│       ├── [6.3K]  query.py
│       ├── [ 14K]  schema.py
│       ├── [ 19K]  sxbase.py
│       ├── [ 22K]  sxbasic.py
│       └── [7.1K]  sxbuiltin.py
├── [4.0K]  suds.egg-info
│   ├── [   1]  dependency_links.txt
│   ├── [ 229]  PKG-INFO
│   ├── [1.4K]  SOURCES.txt
│   └── [   5]  top_level.txt
└── [4.0K]  tests
    ├── [8.5K]  axis1.py
    ├── [4.7K]  axis2.py
    ├── [ 18K]  builtin.py
    ├── [1.1K]  __init__.py
    ├── [1.6K]  jasper.py
    ├── [7.0K]  public.py
    ├── [5.9K]  rhq.py
    └── [1.8K]  saxenc.py

9 directories, 75 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →