Ericsson Network Location MPS GMPC21 Remote Code Execution

Posted by deepcore on November 3, 2021 – 10:12 pm

This Metasploit module exploits an arbitrary command execution vulnerability in Ericsson Network Location Mobile Positioning Systems. The export feature in various parts of the application is vulnerable. It is a feature made for the information in the tables to be exported to the server and imported later when required. Export operations contain the file_name parameter. This parameter is assigned as a variable between the server commands on the backend side. It allows command injection.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Ericsson Network Location MPS GMPC21 Privilege Escalation Dynojet Power Core 2.3.0 Unquoted Service Path »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Ericsson Network Location MPS GMPC21 Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL