/docker-cve-2021-41773

A little demonstration of cve-2021-41773 on httpd docker containers

Primary LanguageShellApache License 2.0Apache-2.0

CVE-2021-41773

A Demonstration to show the CVE-2021-41773 vulnerability on a docker container.

Usage

Server

  • run build.sh(runs docker build)
./scripts/build.sh

NOTE: No need to do it more than once

  • run deploy.sh (creates a docker container with the image from build.sh)
./scripts/deploy.sh

to close the container run the following command:

 docker rm --force cve-2021-41773

Demonstrating the exploit

using bash:

./scripts/exploit.sh

using postman:

  • import the CVE-2021-41773.postman_collection.json collection to your postman and have fun.