Cisco Prime Infrastructure Health Monitor TarArchive Directory Traversal

Posted by deepcore on June 20, 2019 – 1:09 pm

This Metasploit module exploits a vulnerability found in Cisco Prime Infrastructure. The issue is that the TarArchive Java class the HA Health Monitor component uses does not check for any directory traversals while unpacking a Tar file, which can be abused by a remote user to leverage the UploadServlet class to upload a JSP payload to the Apache Tomcat’s web apps directory, and gain arbitrary remote code execution. Note that authentication is not required to exploit this vulnerability.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [local] Cisco Prime Infrastructure – Runrshell Privilege Escalation (Metasploit) Cisco Prime Infrastructure Runrshell Privilege Escalation »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Cisco Prime Infrastructure Health Monitor TarArchive Directory Traversal

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL