Skip to content
CVE-2019-14912 PoC
Python
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
README.md
adAPwn.py

README.md

adaPwn - CVE-2019-14912 PoC

adAS OPENSSO module doesn't correctly verify the domain to redirect, making possible to redirect the user to an attacker controlled website, stealing his adAS session cookie.

Usage

usage: adaPwn.py [-h] [--interface INTERFACE] [--httpPort HTTPPORT] [--dnsPort DNSPORT] ipToSpoof realIP redirectUrl ipBlacklist [ipBlacklist ...]

You can’t perform that action at this time.