CVE-2021-36798
HIGHHelpSystems Cobalt Strike 4.2-4.3 - Denial of Service via Team Server Thread Crash
Title source: llmExploitation Summary
EIP tracks 3 public exploits for CVE-2021-36798. PoCs published by JamVayne, M-Kings, sponkmonk.
AI-analyzed exploit summary This repository contains a functional Python-based exploit for CVE-2021-36798, targeting Cobalt Strike servers with a denial-of-service (DoS) attack. The exploit leverages malleable profile transformations and beacon metadata manipulation to flood the server with crafted requests.
Description
A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it.
Exploits (3)
This repository contains a functional Python-based exploit for CVE-2021-36798, targeting Cobalt Strike servers with a denial-of-service (DoS) attack. The exploit leverages malleable profile transformations and beacon metadata manipulation to flood the server with crafted requests.
This repository contains a functional exploit PoC for CVE-2021-36798, a DoS vulnerability in Cobalt Strike < 4.3. The script fetches beacon configurations from a C2 server and registers a beacon to trigger the vulnerability.
This repository contains a functional exploit for CVE-2021-36798, targeting Cobalt Strike Team Servers. It uses Shodan API to identify potential targets and spams them with crafted requests to exploit the vulnerability.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H