FireEye Wormable Remote Code Execution In MIP JAR Analysis

Posted by deepcore on December 17, 2015 – 9:37 pm

The FireEye MPS (Malware Protection System) is vulnerable to a remote code execution vulnerability, simply from monitoring hostile traffic. FireEye is designed to operate as a passive network tap, so that it can see all the files and emails that enter a monitored network. This vulnerability allows an attacker to compromise the FireEye device, get a root shell and start monitoring all traffic on the victim network (emails, attachments, downloads, web browsing, etc). This is about the worst possible vulnerability that you can imagine for a FireEye user, it literally does not get worse than this.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Ubuntu catman Local Privilege Escalation [webapps] – Ovidentia maillist Module 4.0 – Remote File Inclusion Exploit »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

FireEye Wormable Remote Code Execution In MIP JAR Analysis

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL