DotNetNuke Cookie Deserialization Remote Code Execution

Posted by deepcore on April 3, 2020 – 2:13 pm

This Metasploit module exploits a deserialization vulnerability in DotNetNuke (DNN) versions 5.0.0 through 9.3.0-RC. Vulnerable versions store profile information for users in the DNNPersonalization cookie as XML. The expected structure includes a “type” attribute to instruct the server which type of object to create on deserialization. The cookie is processed by the application whenever it attempts to load the current user’s profile data. This occurs when DNN is configured to handle 404 errors with its built-in error page (default configuration). An attacker can leverage this vulnerability to execute arbitrary code on the system.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [webapps] Pandora FMS 7.0NG – 'net_tools.php' Remote Code Execution VMware Fusion USB Arbitrator Setuid Privilege Escalation »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

DotNetNuke Cookie Deserialization Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL