module
Sysax Multi Server 5.64 Create Folder Buffer Overflow
| Disclosed | Created |
|---|---|
| 2012-07-29 | 2018-05-30 |
Disclosed
2012-07-29
Created
2018-05-30
Description
This module exploits a stack buffer overflow in the create folder function in
Sysax Multi Server 5.64. This issue was fixed in 5.66. In order to trigger the
vulnerability valid credentials with the create folder permission must be provided.
The HTTP option must be enabled on Sysax too.
This module will log into the server, get a SID token, find the root folder, and
then proceed to exploit the server. Successful exploits result in SYSTEM access.
This exploit works on XP SP3, and Server 2003 SP1-SP2.
Sysax Multi Server 5.64. This issue was fixed in 5.66. In order to trigger the
vulnerability valid credentials with the create folder permission must be provided.
The HTTP option must be enabled on Sysax too.
This module will log into the server, get a SID token, find the root folder, and
then proceed to exploit the server. Successful exploits result in SYSTEM access.
This exploit works on XP SP3, and Server 2003 SP1-SP2.
Authors
Craig Freyman
Matt "hostess" Andreko
Matt "hostess" Andreko
Platform
Windows
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.