Serviio Media Server checkStreamUrl Command Execution

Posted by deepcore on May 18, 2017 – 11:24 am

This Metasploit module exploits an unauthenticated remote command execution vulnerability in the console component of Serviio Media Server versions 1.4 to 1.8 on Windows operating systems. The console service (on port 23423 by default) exposes a REST API which which does not require authentication. The ‘action’ API endpoint does not sufficiently sanitize user-supplied data in the ‘VIDEO’ parameter of the ‘checkStreamUrl’ method. This parameter is used in a call to cmd.exe resulting in execution of arbitrary commands. This Metasploit module has been tested successfully on Serviio Media Server versions 1.4.0, 1.5.0, 1.6.0 and 1.8.0 on Windows 7.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Dup Scout Enterprise 9.5.14 Buffer Overflow MS17-010 EternalBlue SMB Remote Windows Kernel Pool Corruption »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Serviio Media Server checkStreamUrl Command Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL