RIPE NCC RPKI exploit chain

8 points by 7tehdt3cnw6kir6o

fanf

I stumbled into the first vulnerability while debugging the reverse DNS zone for my IPv6 range in RIPEstat, RIPE NCC’s network information tool. A blue marquee started scrolling across the page, from an XSS payload I had put in my DNS server months earlier.

Dunno why, but I find this kind of bug slapstick hilarious.

This write-up is a great lesson in the perils of not following the principle of least authority. The followup post on the disclosure process is also worth reading.

Cookie scope is still pending.

Yikes.

mxsash

Dunno why, but I find this kind of bug slapstick hilarious.

As the author, yes, it really is. My personal infrastructure has injections and marquees everywhere, and every once in a while I am debugging some issue, and run into another hit. Often throws me off for a moment until I realise what's going on. And then I have to go and find a security contact :)
- 7tehdt3cnw6kir6o
  
  Meanwhile I can barely make my way through the most basic CTFs :(