CVE-2017-17562 Scanner

The GoAhead Web Server is a popular embedded web server used for a wide range of applications, including home automation, security systems, and industrial control systems. It is known for its lightweight and cross-platform capabilities, making it a popular choice for developers looking to build web applications for these specific niches. GoAhead can be customized and compiled for Linux, BSD, and other operating systems, giving it greater flexibility and versatility than other web servers on the market.

CVE-2017-17562 is a critical vulnerability that was detected in GoAhead version 3.6.5 and below. This vulnerability allows remote code execution if Common Gateway Interface (CGI) is enabled, and a CGI program is dynamically linked. CGI scripts are a popular way of generating dynamic web content, and when combined with the glibc dynamic linker, this vulnerability can be easily exploited by attackers. Specifically, it occurs when untrusted HTTP request parameters are used to initialize the environment of forked CGI scripts in the cgiHandler function in cgi.c. This means that an attacker can post their payload in the body of the request, and reference it using /proc/self/fd/0.

Exploitation of CVE-2017-17562 can lead to a range of serious consequences, including unauthorized access to sensitive data, system compromise, and the ability to execute arbitrary code on the affected server. This vulnerability can also be used as a stepping stone for actors looking to move laterally across an organization's network through privilege escalation and lateral movement. The consequences of the exploitation of this vulnerability can be far-reaching and highly destructive.

In conclusion, maintaining the security of your digital assets is critical to the success and continuity of any business or organization. Thanks to the pro features of the securityforeveryone.com platform, staying informed about vulnerabilities in your digital assets has never been easier. By leveraging the power of this platform, you can easily and quickly identify potential vulnerabilities in your infrastructure, assess potential risks, and take appropriate steps to mitigate them before they can be exploited by attackers. Protecting against vulnerabilities like CVE-2017-17562 is just one aspect of a comprehensive security program, and using the right tools and strategies is critical to success.

REFERENCES

• http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
• http://www.securitytracker.com/id/1040702
• https://github.com/elttam/advisories/tree/master/CVE-2017-17562
• https://github.com/embedthis/goahead/commit/6f786c123196eb622625a920d54048629a7caa74
• https://github.com/embedthis/goahead/issues/249
• https://www.elttam.com.au/blog/goahead/
• https://www.exploit-db.com/exploits/43360/
• https://www.exploit-db.com/exploits/43877/