module
NSClient++ 0.5.2.35 - ExternalScripts Authenticated Remote Code Execution
Disclosed | Created |
---|---|
Oct 20, 2020 | Jun 9, 2021 |
Disclosed
Oct 20, 2020
Created
Jun 9, 2021
Description
This module allows an attacker with knowledge of the admin password of NSClient++
to start a privilege shell.
For this module to work, both web interface of NSClient++ and `ExternalScripts` feature
should be enabled.
to start a privilege shell.
For this module to work, both web interface of NSClient++ and `ExternalScripts` feature
should be enabled.
Authors
kindredsec
Yann Castel (yann.castel Yann Castel (yann.castel@orange.com)
Yann Castel (yann.castel Yann Castel (yann.castel@orange.com)
Platform
Windows
Architectures
x64
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.