Templates of network type cannot accept the expected response in Windows OS

Question

Templates of network type cannot accept the expected response in Windows OS

Jackey0 opened this issue 2 years ago · comments

Nuclei Version: 2.6.9

Template file: CVE-2020-1938.yaml

Command to reproduce: nuclei -t D:\nuclei-templates-master\cves\2020\CVE-2020-1938.yaml -u http://< redacted >:8009

On the Window machine, I detect that this vulnerability does not exist, but it does exist. On Linux, four out of five probes will result in a vulnerability and one will result in no vulnerability. I don't know why.

Prince Chaddha · Answer 1 · Mon May 16 2022 21:29:50 GMT+0800 (China Standard Time)

@Jackey0, Thank you so much for creating this issue. Could you please share the debug data using the -debug flag while running on a Windows and Linux machine? It may be an issue specific to the host.

jackey0 · Answer 2 · Wed May 18 2022 10:58:19 GMT+0800 (China Standard Time)

in windows: the response results are incomplete, but I use Wireshark to capture packets and can see the complete packet

in linux:

jackey0 · Answer 3 · Tue May 31 2022 13:44:29 GMT+0800 (China Standard Time)

It's poc problem

pussycat0x · Answer 4 · Wed May 31 2023 11:34:08 GMT+0800 (China Standard Time)

Hi @Jackey0, CVE-2020-1938 working fine with windows host and it's verified.
Reason: sometimes remote machines/service returning invalid response.

screenshot from actual python exploit.

Tested on Nuclei Engine Version: v2.9.4

pussycat0x · Answer 5 · Fri Jun 23 2023 13:21:19 GMT+0800 (China Standard Time)

Hello @Jackey0 , I am closing this issue now. If you are still experiencing the same problem, please feel free to reopen it. 🚀