AD

McAfee_VirusScan_Enterprise_Linux_RCE

利用多个漏洞组合,在linux上的mcafee病毒扫描企业版的,可以实现以root权限的远程命令执行。
CVE-2016-8016: Remote Unauthenticated File Existence Test
CVE-2016-8017: Remote Unauthenticated File Read (with Constraints)
CVE-2016-8018: No Cross-Site Request Forgery Tokens
CVE-2016-8019: Cross Site Scripting
CVE-2016-8020: Authenticated Remote Code Execution & Privilege Escalation
CVE-2016-8021: Web Interface Allows Arbitrary File Write to Known Location
CVE-2016-8022: Remote Use of Authentication Tokens
CVE-2016-8023: Brute Force Authentication Tokens
CVE-2016-8024: HTTP Response Splitting
CVE-2016-8025: Authenticated SQL Injection

POC:
https://github.com/i1ikey0u/pub1ic_POC/blob/master/McAfee_VirusScan_Enterprise_Linux_RCE.py

来自:

https://packetstormsecurity.com/files/140147/McAfee-Virus-Scan-Enterprise-For-Linux-Remote-Code-Execution.html

评论

  1. I've been using AVG protection for a few years now, and I recommend this Anti virus to everybody.

    回复删除

发表评论

此博客中的热门博文

简单粗暴导出小米便签

我——终于一个人了

多种方法绕过POWERSHELL的执行策略