Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

CVE-2021-3064 PoC — PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces

Source
https://github.com/0xhaggis/CVE-2021-3064
Associated Vulnerability
Title:PAN-OS: Memory Corruption Vulnerability in GlobalProtect Portal and Gateway Interfaces (CVE-2021-3064)
Description:A memory corruption vulnerability exists in Palo Alto Networks GlobalProtect portal and gateway interfaces that enables an unauthenticated network-based attacker to disrupt system processes and potentially execute arbitrary code with root privileges. The attacker must have network access to the GlobalProtect interface to exploit this issue. This issue impacts PAN-OS 8.1 versions earlier than PAN-OS 8.1.17. Prisma Access customers are not impacted by this issue.
Description
Exploit for CVE-2021-3036, HTTP Smuggling + buffer overflow in PanOS 8.x
Readme
# CVE-2021-3064: Pan-OS Remote Buffer Overflow + HTTP Smuggling

## Exploit
This exploit uses an HTTP Smuggling vuln to deliver a payload to an otherwise inaccessible endpoint on Pan-OS firewalls; the endpoint is vulnerable to an overflow that can be exploited to run arbitrary code as root on the affected device.

## Usage
Read the code ;)
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →