automatic module_metadata_base.json update
parent
aff4ef0752
commit
5a994b938d
|
@ -73520,6 +73520,46 @@
|
|||
"notes": {
|
||||
}
|
||||
},
|
||||
"exploit_unix/misc/polycom_hdx_auth_bypass": {
|
||||
"name": "Polycom Command Shell Authorization Bypass",
|
||||
"full_name": "exploit/unix/misc/polycom_hdx_auth_bypass",
|
||||
"rank": 300,
|
||||
"disclosure_date": "2013-01-18",
|
||||
"type": "exploit",
|
||||
"author": [
|
||||
"Paul Haas <Paul.Haas@Security-Assessment.com>",
|
||||
"h00die <mike@shorebreaksecurity.com>"
|
||||
],
|
||||
"description": "The login component of the Polycom Command Shell on Polycom HDX\n video endpoints, running software versions 3.0.5 and earlier,\n is vulnerable to an authorization bypass when simultaneous\n connections are made to the service, allowing remote network\n attackers to gain access to a sandboxed telnet prompt without\n authentication. Versions prior to 3.0.4 contain OS command\n injection in the ping command which can be used to execute\n arbitrary commands as root.",
|
||||
"references": [
|
||||
"URL-http://www.security-assessment.com/files/documents/advisory/Polycom%20HDX%20Telnet%20Authorization%20Bypass%20-%20RELEASE.pdf",
|
||||
"URL-http://blog.tempest.com.br/joao-paulo-campello/polycom-web-management-interface-os-command-injection.html",
|
||||
"EDB-24494"
|
||||
],
|
||||
"is_server": true,
|
||||
"is_client": false,
|
||||
"platform": "Unix",
|
||||
"arch": "cmd",
|
||||
"rport": 23,
|
||||
"autofilter_ports": [
|
||||
|
||||
],
|
||||
"autofilter_services": [
|
||||
|
||||
],
|
||||
"targets": [
|
||||
"Universal"
|
||||
],
|
||||
"mod_time": "2018-11-04 06:14:26 +0000",
|
||||
"path": "/modules/exploits/unix/misc/polycom_hdx_auth_bypass.rb",
|
||||
"is_install_path": true,
|
||||
"ref_name": "unix/misc/polycom_hdx_auth_bypass",
|
||||
"check": true,
|
||||
"post_auth": false,
|
||||
"default_credential": false,
|
||||
"notes": {
|
||||
}
|
||||
},
|
||||
"exploit_unix/misc/polycom_hdx_traceroute_exec": {
|
||||
"name": "Polycom Shell HDX Series Traceroute Command Execution",
|
||||
"full_name": "exploit/unix/misc/polycom_hdx_traceroute_exec",
|
||||
|
@ -73751,7 +73791,7 @@
|
|||
"targets": [
|
||||
"Universal"
|
||||
],
|
||||
"mod_time": "2017-10-20 20:08:11 +0000",
|
||||
"mod_time": "2018-11-04 06:14:26 +0000",
|
||||
"path": "/modules/exploits/unix/polycom_hdx_auth_bypass.rb",
|
||||
"is_install_path": true,
|
||||
"ref_name": "unix/polycom_hdx_auth_bypass",
|
||||
|
|
Loading…
Reference in New Issue