Description
Remote Code Execution in Samsung MagicINFO 9 Server <= 21.1050.0. Remote code execution can be obtained by exploiting the path traversal vulnerability (CVE-2024-7399) in the SWUpdateFileUploader servlet, which can be queried by an unauthenticated user to upload a JSP shell. By default, the application listens on TCP ports 7001 (HTTP) and 7002 (HTTPS) on all network interfaces and runs in the context of NT AUTHORITY\SYSTEM.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use exploit/windows/http/magicinfo_traversalmsf undefined(magicinfo_traversal) > show actions ...actions...msf undefined(magicinfo_traversal) > set ACTION < action-name >msf undefined(magicinfo_traversal) > show options ...show and set options...msf undefined(magicinfo_traversal) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub