CVE-2023-25136 Proof-of-Concept

Overview

This is a DoS Proof-of-Concept of OpenSSH 9.1p1 Double-Free Vulnerability CVE-2023-25136.
It will trigger the double-free and cause an abort crash.
For a comprehensive understanding, check out the accompanying blog post for in-depth details.

Dependencies

Python 3.6+
paramiko Python Library

Usage

Verify paramiko is installed:

pip install paramiko

Change the VICTIM_IP to match your vulnerable OpenSSH Server IP.
Run the PoC:

python cve-2023-25136.py

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
LICENSE		LICENSE
README.md		README.md
cve-2023-25136.py		cve-2023-25136.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

LICENSE

LICENSE

README.md

README.md

cve-2023-25136.py

cve-2023-25136.py

Repository files navigation

CVE-2023-25136 Proof-of-Concept

Overview

Dependencies

Usage

About

Releases

Packages

Languages

License

jfrog/jfrog-CVE-2023-25136-OpenSSH_Double-Free

Folders and files

Latest commit

History

Repository files navigation

CVE-2023-25136 Proof-of-Concept

Overview

Dependencies

Usage

About

Resources

License

Security policy

Stars

Watchers

Forks

Languages