The application interacted with the Collaborator server ") + if (sync) { + sb.append("in response to") + } else { + sb.append("some time after") + } + sb.append(" a request with a Text4Shell payload
This means that the web service (or another node in the network) is affected by this vulnerability.
") + if (!sync) { + sb.append("Since this interaction occurred some time after the original request (compare " +
+ "the Date
header of the HTTP response vs. the interactions timestamps above), " +
+ "the vulnerable code might be in another process/codebase or a completely different " +
+ "host (e.g. batch processing). There might even be multiple instances of " +
+ "this vulnerability on different pieces of infrastructure given the nature of the bug.