Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-0324 PoC — Buffer Overflow in Dhcp6relay in Software for Open Networking in the Cloud (SONiC)

Source
https://github.com/ngtuonghung/CVE-2022-0324
Associated Vulnerability
Title:Buffer Overflow in Dhcp6relay in Software for Open Networking in the Cloud (SONiC) (CVE-2022-0324)
Description:There is a vulnerability in DHCPv6 packet parsing code that could be explored by remote attacker to craft a packet that could cause buffer overflow in a memcpy call, leading to out-of-bounds memory write that would cause dhcp6relay to crash. Dhcp6relay is a critical process and could cause dhcp relay docker to shutdown. Discovered by Eugene Lim of GovTech Singapore.
Description
PoC for CVE-2022-0324: Buffer Overflow in dhcp6relay of SONiC
Readme
# cve-2022-0324

https://ngtuonghung.github.io/blog/research/cve-2022-0324/
File Snapshot

 [4.0K]  /data/pocs/e698fc0ab4398c37a59a724d0ec03b82743d559d
├── [ 283]  add_ipv6_addresses.sh
├── [1.3K]  Dockerfile
├── [ 563]  exploit.py
└── [  76]  README.md

1 directory, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →