search

xaitax / CVE-2024-6387_Check

CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
GNU General Public License v3.0
381 stars 77 forks source link

Hosts that only have an IPv6 address cannot be tested by hostname #27

Closed peteeckel closed 3 days ago

peteeckel commented 4 days ago 
pete@ardbeg ~ % dig +short cerberus2.xxxx.com A
pete@ardbeg ~ % dig +short cerberus2.xxxx.com AAAA
xxxx:xxxx:xxxx:xxxx::1400:0
pete@ardbeg ~ % ./CVE-2024-6387_Check.py cerberus2.xxxx.com

                                      _________ _________ ___ ___ .__
_______   ____   ___________   ____  /   _____//   _____//   |   \|__| ____   ____
\_  __ \_/ __ \ / ___\_  __ \_/ __ \ \_____  \ \_____  \/    ~    \  |/  _ \ /    \
 |  | \/\  ___// /_/  >  | \/\  ___/ /        \/        \    Y    /  (  <_> )   |  \
 |__|    \___  >___  /|__|    \___  >_______  /_______  /\___|_  /|__|\____/|___|  /
             \/_____/             \/        \/        \/       \/                \/
    CVE-2024-6387 Vulnerability Checker
    v0.5 / Alex Hagenah / @xaitax / ah@primepage.de

Progress: 1/1 hosts scanned

šŸ›”ļø Servers not vulnerable: 0

šŸšØ Servers likely vulnerable: 0

āš ļø Servers with unknown SSH version: 0

šŸ”’ Servers with port 22 closed: 1

šŸ“Š Total scanned targets: 1

pete@ardbeg ~ % ./CVE-2024-6387_Check.py xxxx:xxxx:xxxx:xxxx::1400:0  

                                      _________ _________ ___ ___ .__
_______   ____   ___________   ____  /   _____//   _____//   |   \|__| ____   ____
\_  __ \_/ __ \ / ___\_  __ \_/ __ \ \_____  \ \_____  \/    ~    \  |/  _ \ /    \
 |  | \/\  ___// /_/  >  | \/\  ___/ /        \/        \    Y    /  (  <_> )   |  \
 |__|    \___  >___  /|__|    \___  >_______  /_______  /\___|_  /|__|\____/|___|  /
             \/_____/             \/        \/        \/       \/                \/
    CVE-2024-6387 Vulnerability Checker
    v0.5 / Alex Hagenah / @xaitax / ah@primepage.de

Progress: 1/1 hosts scanned

šŸ›”ļø Servers not vulnerable: 0

šŸšØ Servers likely vulnerable: 1

   [+] Server at xxxx:xxxx:xxxx:xxxx::1400:0 (running SSH-2.0-OpenSSH_9.2p1)

āš ļø Servers with unknown SSH version: 0

šŸ”’ Servers with port 22 closed: 0

šŸ“Š Total scanned targets: 1
xaitax commented 4 days ago

Thanks @peteeckel - Can you please check again?

peteeckel commented 4 days ago

Not quite ... now they're checked twice:

pete@ardbeg ~ % ./CVE-2024-6387_Check.py cerberus2.xxxx.com          

                                      _________ _________ ___ ___ .__
_______   ____   ___________   ____  /   _____//   _____//   |   \|__| ____   ____
\_  __ \_/ __ \ / ___\_  __ \_/ __ \ \_____  \ \_____  \/    ~    \  |/  _ \ /    \
 |  | \/\  ___// /_/  >  | \/\  ___/ /        \/        \    Y    /  (  <_> )   |  \
 |__|    \___  >___  /|__|    \___  >_______  /_______  /\___|_  /|__|\____/|___|  /
             \/_____/             \/        \/        \/       \/                \/
    CVE-2024-6387 Vulnerability Checker
    v0.6 / Alex Hagenah / @xaitax / ah@primepage.de

Progress: 2/2 hosts scanned

šŸ›”ļø Servers not vulnerable: 0

šŸšØ Servers likely vulnerable: 2

   [+] Server at xxxx:xxxx:xxxx:xxxx::1400:0 (running SSH-2.0-OpenSSH_9.2p1)
   [+] Server at xxxx:xxxx:xxxx:xxxx::1400:0 (running SSH-2.0-OpenSSH_9.2p1)

āš ļø Servers with unknown SSH version: 0

šŸ”’ Servers with port 22 closed: 0

šŸ“Š Total scanned targets: 2
xaitax commented 3 days ago

Let's give it another try, shall we? :)

peteeckel commented 3 days ago

Perfect! Thanks for the quick fix!