adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
0cd2bc50100bb3889ada4e882e14c2c70f6f5ff7
metasploit-gs/modules/exploits
T
History
Jack Heysel d7f3fd8cc0 Land #18915, Add Watchguard RCE CVE-2022-26318 
This PR adds a module for a buffer overflow at the administration
interface of WatchGuard Firebox and XTM appliances. The appliances are
built from a cherrypy python backend sending XML-RPC requests to a C
binary called wgagent using pre-authentication endpoint /agent/login.
This vulnerability impacts Fireware OS before 12.7.2_U2, 12.x before
12.1.3_U8, and 12.2.x through 12.5.x before 12.5.9_U2. Successful
exploitation results in remote code execution as user nobody.
2024-03-28 10:24:32 -07:00
..
aix
android
apple_ios
Add additional reliability and stability notes to modules
2024-01-22 23:29:57 +00:00
bsd/finger
bsdi/softcart
dialup/multi/login
firefox/local
freebsd
Fixed root password resetting
2023-09-29 11:40:03 -04:00
hpux/lpd
irix/lpd
linux
Land #18915, Add Watchguard RCE CVE-2022-26318
2024-03-28 10:24:32 -07:00
mainframe/ftp
multi
Land #18891, Add RCE module for wp bricks builder
2024-03-26 14:46:35 -07:00
netware
openbsd/local
osx
Add missing Platform to osx/local/persistence module
2024-03-25 16:00:25 +00:00
qnx
solaris
Mark unix encoders as compatible with linux
2024-01-19 13:40:43 -05:00
unix
Fixes store_valid_credential conditional logic for unix/webapp/wp_admin_shell_upload module
2024-03-21 12:22:11 +00:00
windows
Land #18721, SharePoint Unauth RCE Exploit Chain (CVE-2023-29357 & CVE-2023-24955)
2024-03-26 12:42:22 -05:00
example_linux_priv_esc.rb
example_webapp.rb
example.py
example.rb