Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-1292 PoC — The c_rehash script allows command injection

Source
https://github.com/rama291041610/CVE-2022-1292
Associated Vulnerability
Title:The c_rehash script allows command injection (CVE-2022-1292)
Description:The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).
Description
CVE-2022-1292 OpenSSL c_rehash Vulnerability
File Snapshot

 [4.0K]  /data/pocs/ac9bbdfd8d2a1b686e8303b45911de0ec201d564
├── [ 339]  Dockerfile
├── [4.0K]  images
│   └── [ 83K]  1.jpg
├── [9.3M]  openssl-1.1.1f.tar.gz
├── [ 275]  poc.sh
└── [ 933]  Readme.md

1 directory, 5 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →