Adobe IndesignServer 5.5 SOAP Server Arbitrary Script Execution

Posted by deepcore on December 6, 2012 – 5:36 am

This Metasploit module abuses the “RunScript” procedure provided by the SOAP interface of Adobe InDesign Server, to execute arbitrary vbscript (Windows) or applescript(OSX). The exploit drops the payload on the server and must be removed manually.

Link:
Adobe IndesignServer 5.5 SOAP Server Arbitrary Script Execution

Tags: adobe, Apple, twitter
This post is under “Apple, exploit, facebook, iphone, m$, OSX security tools, Privacy, Security, tools, twitter, XSS” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [dos] – NVIDIA Install Application 2.1002.85.551 (NVI2.dll) Unicode Buffer Overflow PoC Des détenus auraient pu blesser Manning – Le Figaro »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Adobe IndesignServer 5.5 SOAP Server Arbitrary Script Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL