Git LFS Clone Command Execution

Posted by deepcore on September 1, 2021 – 11:36 am

Git clients that support delay-capable clean / smudge filters and symbolic links on case-insensitive file systems are vulnerable to remote code execution while cloning a repository. Usage of clean / smudge filters through Git LFS and a case-insensitive file system changes the checkout order of repository files which enables the placement of a Git hook in the .git/hooks directory. By default, this Metasploit module writes a post-checkout script so that the payload will automatically be executed upon checkout of the repository.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Backdoor.Win32.BO2K.11.d Buffer Overflow WordPress ProfilePress 3.1.3 Privilege Escalation »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Git LFS Clone Command Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL