CVE-2017-5689 Proof-of-Concept exploit
Python
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
README.md Add README.md Jul 27, 2017
blank_auth_response.py Initial project version Jul 27, 2017

README.md

Intel AMT authentication bypass example

This is a Proof-of-Concept code that demonstrates the exploitation of the CVE-2017-5689 vulnerability.

It is essentialy a mitmproxy script that simply blanks an Authorization header "response" field.

Example usage:

mitmdump -p 8080 -dd --no-http2 -s blank_auth_response.py