Update CVE-2019-10068.yaml
parent
5ce3ebc7f7
commit
3608b6c162
|
@ -6,10 +6,11 @@ info:
|
|||
severity: critical
|
||||
description: |
|
||||
Searches for Kentico CMS installations that are vulnerable to a .NET deserialization vulnerability that could be exploited to achieve remote command execution. Credit to Manoj Cherukuri and Justin LeMay from Aon Cyber Solutions for discovery of the vulnerability.
|
||||
tags: rce,deserialization,kentico,iis
|
||||
tags: cve,cve2019,rce,deserialization,kentico,iis
|
||||
reference: |
|
||||
- https://www.aon.com/cyber-solutions/aon_cyber_labs/unauthenticated-remote-code-execution-in-kentico-cms/
|
||||
- https://packetstormsecurity.com/files/157588/Kentico-CMS-12.0.14-Remote-Command-Execution.html
|
||||
- https://nvd.nist.gov/vuln/detail/CVE-2019-10068
|
||||
|
||||
requests:
|
||||
- method: POST
|
||||
|
@ -28,4 +29,6 @@ requests:
|
|||
- type: word
|
||||
words:
|
||||
- 'System.InvalidCastException'
|
||||
part: body
|
||||
- 'System.Web.Services.Protocols.SoapException'
|
||||
part: body
|
||||
condition: and
|
Loading…
Reference in New Issue