作者CMJ0121 (请多指教!!)
看板NetSecurity
标题[CVE] CVE-2016-10033 (PHPMailer)
时间Tue Dec 27 09:30:47 2016
CVE - 2016-10033 (PHPMailer) / Remote Code Execution (RCE)
Version - PHPMailer < 5.2.18
Solution
1- Update to 5.2.18 [2]
POC
[1]:
https://www.exploit-db.com/exploits/40968/
Ref
[1]:
https://legalhackers.com/advisories/PHPMailer-Exploit-Remote-Code-Exec-CVE-2016-10033-Vuln.html
[2]:
https://github.com/PHPMailer/PHPMailer/blob/master/SECURITY.md
--
※ 发信站: 批踢踢实业坊(ptt.cc), 来自: 125.227.147.112
※ 文章网址: https://webptt.com/cn.aspx?n=bbs/NetSecurity/M.1482802251.A.74F.html
※ 编辑: CMJ0121 (125.227.147.112), 12/27/2016 10:07:41
1F:推 ibeakid: 推个认真 12/27 18:28