[A6] - Vulnerable and Outdated Components - Golden Hat Society

[soaresraquel]

This solution refers to which of the apps?

• Golden Hat Society

What did you do to mitigate the vulnerability?

To mitigate this vulnerability I had to update the mitmproxy version, because the used version was able to perform HTTP Resquest Smuggling attacks, which now was fixed in mitmproxy 7.0.3. I also had to update the Ubuntu version. Read about lacking of protection in mitmptoxy

Did you test your changes? What commands did you run?

Yes, I reproduced the 'Attack Narrative' and couldn’t reproduced the same error anymore.