作者CMJ0121 (請多指教!!)
看板NetSecurity
標題[CVE] CVE-2016-10033 (PHPMailer)
時間Tue Dec 27 09:30:47 2016
CVE - 2016-10033 (PHPMailer) / Remote Code Execution (RCE)
Version - PHPMailer < 5.2.18
Solution
1- Update to 5.2.18 [2]
POC
[1]:
https://www.exploit-db.com/exploits/40968/
Ref
[1]:
https://legalhackers.com/advisories/PHPMailer-Exploit-Remote-Code-Exec-CVE-2016-10033-Vuln.html
[2]:
https://github.com/PHPMailer/PHPMailer/blob/master/SECURITY.md
--
※ 發信站: 批踢踢實業坊(ptt.cc), 來自: 125.227.147.112
※ 文章網址: https://webptt.com/m.aspx?n=bbs/NetSecurity/M.1482802251.A.74F.html
※ 編輯: CMJ0121 (125.227.147.112), 12/27/2016 10:07:41
1F:推 ibeakid: 推個認真 12/27 18:28