cve-2018-10933/Dockerfile at master · hackerhouse-opensource/cve-2018-10933 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
# libssh server vulnerable to cve-2018-10933 with a simple PoC demo
FROM base/archlinux
ADD libssh-0.8.3.tar.xz /root
ADD cve-2018-10933.patch /root
ADD server.patch /root
RUN pacman -Syu --noconfirm &&\
    pacman -S patch net-tools vim openssh make gcc cmake --noconfirm &&\
    cp -r /root/libssh-0.8.3 /root/exploit-libssh-0.8.3 &&\
    cd /root/libssh-0.8.3 &&\
    mkdir build &&\
    cd build &&\
    cmake .. &&\
    make &&\
    make install &&\
    cd examples &&\
    make &&\
    cd /root/exploit-libssh-0.8.3 &&\
    patch -p0 < /root/cve-2018-10933.patch &&\
    patch -p0 < /root/server.patch &&\
    mkdir build && \
    cd build && \
    cmake .. && \
    make &&\
    make install &&\
    cd /root &&\
    ssh-keygen -t dsa -f ssh_host_dsa_key -N '' &&\
    ssh-keygen -t rsa -b 2048 -f ssh_host_rsa_key -N ''
EXPOSE 22
CMD ["/root/exploit-libssh-0.8.3/build/examples/ssh_server_fork", "-d", "/root/ssh_host_dsa_key", "-k", "/root/ssh_host_rsa_key", "-p", "22", "-v", "0.0.0.0" ]