←back to thread

A webshell and a normal file that have the same MD5

(github.com)
98 points shlomo_z | 10 comments | 21 Sep 25 05:52 UTC | HN request time: 0s | source | bottom
1. Incipient ◴[24 Sep 25 06:04 UTC] No.45356813[source]
The idea here is you can trigger a server to run the "safe" php file, then send it the webshell version, which passes hash based scanning?
replies(2): >>45356897 #>>45357819 #
2. chipsrafferty ◴[24 Sep 25 06:18 UTC] No.45356897[source]
Yes, but you'd need a situation where:

1. You can upload scripts that get scanned for malicious code 2. These scripts can be executed once deemed "safe" 3. The server is using MD5 hashes to determine if you uploaded the same file or if it should re-scan it

3. Is where the issue is. It should probably always re-scan it and it definitely should not be using MD5.

replies(3): >>45357487 #>>45357578 #>>45357654 #
3. szszrk ◴[24 Sep 25 07:49 UTC] No.45357487[source]
Is there any fairly popular software that still uses md5 in this context?

Most I've seen (sec scans, backup validation/dedup etc) pushed to phase out md5 very long time ago.

replies(1): >>45357875 #
4. IshKebab ◴[24 Sep 25 08:03 UTC] No.45357578[source]
There's no need to rescan. You just need to use a secure hash.
replies(1): >>45358971 #
5. falcor84 ◴[24 Sep 25 08:17 UTC] No.45357654[source]
>The server is using MD5 hashes to determine if you uploaded the same file or if it should re-scan it

Wouldn't the sensible thing for a server that gets an upload matching an existing file's hash be to just treat it as an idempotent no-op? What reason would it have to replace the old version with a presumably identical copy? What am I missing?

replies(1): >>45358621 #
6. sim7c00 ◴[24 Sep 25 08:46 UTC] No.45357819[source]
the safe file is not a valid php file? it might be executed if php is like javascript ignorning valid chars, but i doubt something actually 'looking at it' would accept it as benign or valid.
7. h33t-l4x0r ◴[24 Sep 25 08:58 UTC] No.45357875{3}[source]
Wordpress uses md5 checksums for core files. That doesn't make it vulnerable to this, except in the sense that it kind of validates using them.
8. dnet ◴[24 Sep 25 10:50 UTC] No.45358621{3}[source]
I assume the scanner is a separate library/service that receives the contents and returns a boolean safe/malicious result, and the implementation using MD5 to avoid expensive re-scans is an internal detail hidden from the caller.
9. jgalt212 ◴[24 Sep 25 11:41 UTC] No.45358971{3}[source]
Secure for now, rather. A solid game plan would be to have your code base set up to easily swap in a new hashing method when called for. I believe Django automatically promotes passwords stored with insecure hashes to secure ones the next time a user logs in.
replies(1): >>45364457 #
10. IshKebab ◴[24 Sep 25 18:49 UTC] No.45364457{4}[source]
Yeah not really an issue for a cache since you can just invalidate the cache when you change algorithm.