CVE-2022-0778 icon indicating copy to clipboard operation
CVE-2022-0778 copied to clipboard

Published 20 hours ago verified publisher icon drago-96

Unable to send crafted dangerous certificate in a request

Open hsvhora opened this issue 2 years ago • 3 comments

Hi All,

I was trying to send dangerous certificate to the server (in my internal setup) using openssl s_client and curl, but not able to send due to not vulnerbale openssl was not able to parse it properly and vulnerable openssl was hung itself. Attached screenshots of the same.

Do anyone have idea how we can send request with dangerous certificate ?

Error while using not vulnerable openssl s_client: error_s_client_LI

Error while trying with curl: error_curl

hsvhora avatar Mar 24 '22 15:03 hsvhora

Maybe your should change the source code, or use debugger to substitute the cert content just before sending the CERTIFICATE message.

catbro666 avatar Mar 25 '22 02:03 catbro666

Yes, I guess it would need something like that. I still see this after regenerating a vulnerable cert to match the key, solving https://github.com/drago-96/CVE-2022-0778/issues/8

martindorey avatar Mar 25 '22 04:03 martindorey

Thanks @catbro666 and @martindorey for your response !! Yeah I will try the same.

hsvhora avatar Mar 25 '22 10:03 hsvhora