module

Netsweeper WebAdmin unixlogin.php Python Code Injection

Try Surface Command
Back to search
Disclosed
2020-04-28
Created
2020-05-12

Description

This module exploits a Python code injection in the Netsweeper
WebAdmin component's unixlogin.php script, for versions 6.4.4 and
prior, to execute code as the root user.

Authentication is bypassed by sending a random whitelisted Referer
header in each request.

Tested on the CentOS Linux-based Netsweeper 6.4.3 and 6.4.4 ISOs.
Though the advisory lists 6.4.3 and prior as vulnerable, 6.4.4 has
been confirmed exploitable.

Author

wvu wvu@metasploit.com

Platform

Python

Architectures

python

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


    msf > use exploit/linux/http/netsweeper_webadmin_unixlogin
    msf exploit(netsweeper_webadmin_unixlogin) > show targets
        ...targets...
    msf exploit(netsweeper_webadmin_unixlogin) > set TARGET < target-id >
    msf exploit(netsweeper_webadmin_unixlogin) > show options
        ...show and set options...
    msf exploit(netsweeper_webadmin_unixlogin) > exploit
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today