piątek, 18 sierpnia 2017

Metasploit module for RCE in Trend Micro IMSVA 9.1

According to the story posted yesterday below you will find quick&dirty proof-of-concent module for Metasploit. Big thanks goes to Mehmet for his research. Poc is based mostly on his work.

TL;DR

Sample exploitation below:


Once again big thanks goes to PentestBlog.

Cheers


Update:

 

New version to test - here.

Cheers

o/


Update 25.08.2017:
Added MSF module is not working properly (probably because I don't know how to push more-than-40-characters-in-py as a payload), so below you will find working python-version of the poc:
Code is stored on my github.


Posted by at
Labels: , , , , ,

Brak komentarzy:

Prześlij komentarz

Subskrybuj: Komentarze do posta (Atom)