Rapid7 Vulnerability & Exploit Database

Centreon Poller Authenticated Remote Command Execution

Back to Search

Centreon Poller Authenticated Remote Command Execution

Disclosed
01/27/2020
Created
03/17/2020

Description

An authenticated user with sufficient administrative rights to manage pollers can use this functionality to execute arbitrary commands remotely. Usually, the miscellaneous commands are used by the additional modules (to perform certain actions), by the scheduler for data processing, etc. This module uses this functionality to obtain a remote shell on the target.

Author(s)

  • Omri Baso
  • Fabien Aunay
  • mekhalleh (RAMELLA Sébastien)

Platform

Linux,Unix

Architectures

cmd, x64

Development

References

  • EDB-47977

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use exploit/linux/http/centreon_pollers_auth_rce
msf exploit(centreon_pollers_auth_rce) > show targets
    ...targets...
msf exploit(centreon_pollers_auth_rce) > set TARGET < target-id >
msf exploit(centreon_pollers_auth_rce) > show options
    ...show and set options...
msf exploit(centreon_pollers_auth_rce) > exploit

Time is precious, so I don’t want to do something manually that I can automate. Leveraging the Metasploit Framework when automating any task keeps us from having to re-create the wheel as we can use the existing libraries and focus our efforts where it matters.

– Jim O’Gorman | President, Offensive Security

;