module
Pandora FMS Default Credential / SQLi Remote Code Execution
| Disclosed | Created |
|---|---|
| Feb 1, 2014 | May 30, 2018 |
Disclosed
Feb 1, 2014
Created
May 30, 2018
Description
This module attempts to exploit multiple issues in order to gain remote
code execution under Pandora FMS version to authenticate using default credentials is performed. If this method
fails, a SQL injection vulnerability is leveraged in order to extract
the "Auto Login" password hash. If this value is not set, the module
will then extract the administrator account's MD5 password hash.
code execution under Pandora FMS version to authenticate using default credentials is performed. If this method
fails, a SQL injection vulnerability is leveraged in order to extract
the "Auto Login" password hash. If this value is not set, the module
will then extract the administrator account's MD5 password hash.
Authors
Lincoln Lincoln@corelan.be
Jason Kratzer pyoor@corelan.be
Jason Kratzer pyoor@corelan.be
Platform
PHP
Architectures
php
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.