UAF failed, exiting

Question

UAF failed, exiting

joseaguardia opened this issue 4 years ago · comments

Hi!

I get an "UAF failed, exiting." error, with Apache 2.4.18 and PHP 7.0.4.

Thanks!

CARPE (DIEM) ~ CVE-2019-0211

PID: 6498
Fetching addresses
  zend_object_std_dtor: 0x7f3b41351f80
  system: 0x7f3b44212390
  libaprX: 0x7f3b447b4000-0x0x7f3b447e5000
  libaprR: 0x7f3b449e4000-0x0x7f3b449e5000
  shm: 0x7f3b44f7e000-0x0x7f3b44f91000
  apache: 0x7f3b44fd2000-0x0x7f3b450a2000

Obtaining apache workers PIDs
  Found apache worker: 2280
  Found apache worker: 2576
  Found apache worker: 6495
  Found apache worker: 6496
  Found apache worker: 6497
  Found apache worker: 6498
  Found apache worker: 6500
  Found apache worker: 7296
  Found apache worker: 7437
Got 9 PIDs.

Triggering UAF
  Creating room and filling empty spaces
  Allocating $abc and $p
  Unsetting both variables and setting $protector
  Creating DateInterval object
UAF failed, exiting.
test@test:/var/www/html$ php -v
php -v
PHP 7.0.4-7ubuntu2 (cli) ( NTS )
Copyright (c) 1997-2016 The PHP Group
Zend Engine v3.0.0, Copyright (c) 1998-2016 Zend Technologies
    with Zend OPcache v7.0.6-dev, Copyright (c) 1999-2016, by Zend Technologies
test@test:/var/www/html$ apache2ctl -v
apache2ctl -v
Server version: Apache/2.4.18 (Ubuntu)
Server built:   2016-04-15T18:00:57

Alvin Smith · Answer 1 · Sun Feb 21 2021 16:44:18 GMT+0800 (China Standard Time)

Same but in different versions
PHP 7.2.24-0ubuntu0.18.04.7 (cli) (built: Oct 7 2020 15:24:25) ( NTS )

Alvin Smith · Answer 2 · Wed Feb 24 2021 06:39:43 GMT+0800 (China Standard Time)

Okay, by making assumptions only. It might just mean the server been patched already.