module

Netsweeper WebAdmin unixlogin.php Python Code Injection

Disclosed	Created
Apr 28, 2020	May 12, 2020

Disclosed

Apr 28, 2020

Created

May 12, 2020

Description

This module exploits a Python code injection in the Netsweeper
WebAdmin component's unixlogin.php script, for versions 6.4.4 and
prior, to execute code as the root user.

Authentication is bypassed by sending a random whitelisted Referer
header in each request.

Tested on the CentOS Linux-based Netsweeper 6.4.3 and 6.4.4 ISOs.
Though the advisory lists 6.4.3 and prior as vulnerable, 6.4.4 has
been confirmed exploitable.

Author

wvu [email protected]

Platform

Python

Architectures

python

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use exploit/linux/http/netsweeper_webadmin_unixlogin
    msf exploit(netsweeper_webadmin_unixlogin) > show targets
        ...targets...
    msf exploit(netsweeper_webadmin_unixlogin) > set TARGET < target-id >
    msf exploit(netsweeper_webadmin_unixlogin) > show options
        ...show and set options...
    msf exploit(netsweeper_webadmin_unixlogin) > exploit

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report