Exploitation Summary
EIP tracks 21 public exploits for CVE-2015-0235.
PoCs published by Qualys Corporation, 1n3, aaronfay, including Metasploit module auxiliary/scanner/http/wordpress_ghost_scanner.
AI-analyzed exploit summary This Metasploit module exploits CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname functions, targeting Exim mail servers on x86/x86_64 Linux systems. It leverages specific Exim configurations and FCrDNS requirements to achieve remote code execution.
Description
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
Exploits (21)
This Metasploit module exploits CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname functions, targeting Exim mail servers on x86/x86_64 Linux systems. It leverages specific Exim configurations and FCrDNS requirements to achieve remote code execution.
This exploit leverages CVE-2015-0235 (GHOST vulnerability) to trigger a buffer overflow in Exim's ESMTP service via a maliciously crafted HELO/EHLO command, causing a denial-of-service (DoS) condition.
This repository contains a scanner for CVE-2015-0235 (GHOST vulnerability), which checks if a system is vulnerable to a heap-based buffer overflow in the GNU C Library's gethostbyname functions. The PoC attempts to trigger the vulnerability and checks for a canary overwrite to determine vulnerability status.
This repository contains a proof-of-concept exploit for CVE-2015-0235 (GHOST vulnerability) in glibc, which involves a heap-based buffer overflow in the gethostbyname_r and gethostbyname2_r functions. It includes a test program (GHOST2.c) to check for vulnerability and a shared library wrapper (gethostbyname_wrap.c) as a workaround.
This PoC checks for the GHOST vulnerability (CVE-2015-0235) by exploiting a buffer overflow in the gethostbyname_r function. It verifies if the canary value is overwritten, indicating vulnerability.
This repository contains a Python and Ruby exploit for CVE-2015-0235 (GHOST vulnerability), targeting Exim SMTP servers. The exploit triggers a buffer overflow in the gethostbyname() function, causing a denial-of-service (DoS) condition.
This repository contains a Chef cookbook designed to test for CVE-2015-0235 (GHOST vulnerability) in glibc. It compiles and runs a C program that checks if the system's libc is vulnerable to a buffer overflow in the gethostbyname_r function.
This PoC exploits CVE-2015-0235 (GHOST), a heap-based buffer overflow in the GNU C Library's gethostbyname functions. It checks for vulnerability by triggering the overflow and verifying a canary value is overwritten.
This PoC tests for CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname* functions. It checks if the canary value is overwritten, indicating vulnerability.
This PoC tests for CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname* functions. It attempts to overflow a buffer using a crafted hostname and checks for canary corruption to determine vulnerability.
This is a Fabric-based scanner for detecting CVE-2015-0235 (GHOST) vulnerability in glibc versions. It checks the glibc version and build date on remote Linux hosts via SSH to determine if they are vulnerable.
This PoC is a scanner for CVE-2015-0235 (GHOST vulnerability) in WordPress XMLRPC. It sends a crafted pingback request with a long host header to trigger a buffer overflow, checking for vulnerability based on the server's response.
This PoC exploits CVE-2015-0235 (GHOST), a heap-based buffer overflow in the GNU C Library's gethostbyname* functions. It checks for vulnerability by overflowing a buffer and detecting canary corruption.
This repository contains a proof-of-concept exploit for CVE-2015-0235 (GHOST), a heap-based buffer overflow in the GNU C Library (glibc) gethostbyname functions. It includes a C-based exploit (GHOST.c) to test vulnerability and a shell script (GHOST-test.sh) to check glibc versions for vulnerability.
This repository contains Ansible playbooks and shell scripts to mitigate CVE-2015-0235 (GHOST vulnerability) by updating the glibc package on affected systems. The scripts log their actions and check for installed packages.
This repository contains a scanner for CVE-2015-0235 (GHOST vulnerability in glibc). It includes a C program and a shell script to test for the vulnerability by checking glibc versions and exploiting a buffer overflow in gethostbyname_r.
This PoC exploits CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname functions. It checks for vulnerability by triggering the overflow and verifying canary corruption.
This repository contains a Chef cookbook for detecting and patching CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname functions. It includes a PoC exploit (GHOST.c) to check vulnerability status and recipes to update glibc on Ubuntu/CentOS.
The repository contains only a README.md file with minimal content, providing no functional exploit code or technical details for CVE-2023-4879. It appears to be a placeholder or incomplete submission.
This Metasploit module scans for the GHOST vulnerability (CVE-2015-0235) in WordPress by sending a malformed XMLRPC request. It checks if the target system crashes (indicating vulnerability) or returns a normal error (indicating patched).
This Metasploit module exploits CVE-2015-0235 (GHOST), a heap-based buffer overflow in glibc's gethostbyname functions, targeting Exim mail servers on x86/x86_64 Linux systems. It achieves remote code execution by leveraging a crafted SMTP HELO command to overflow the buffer and manipulate heap metadata.