When processing network requests, if read block more than 1024*8,will be error. #1609
Labels
Status: Completed
Nothing further to be done with this issue. Awaiting to be closed.
Type: Bug
Inconsistencies or issues which will cause an issue or problem for users or implementors.
Milestone
Nuclei version:
Current Version: 2.6.0
Current Behavior:
When the read data exceeds 1024*8, the debug mode does not display the response, and the requested data and order are not correct.
Expected Behavior:
When there are 9 read blocks, the corresponding response can be read.
Steps To Reproduce:
I am writing a poc template about CVE-2021-44521,my local env is Cassandra 4.0.0 and set
enable_user_defined_functions_threads: false
in cassandra.yaml.and this is my poc:
if i comment the last
read: 1024
block, will be success. use network-fingerprint result like thisrequest will send sql to create udf in cassandra. sql is this
debug mode result is this
but if i uncomment last read block, no response info to display for me.
i guess maybe nuclei set max buffer for socket recived response?
when read block more than 1024*8, no response to display.
Anything else:
about CVE-2021-44521,you can read these post:
The text was updated successfully, but these errors were encountered: