728x90
Quantum vmPRO Backdoor Command
This module abuses a backdoor command in vmPRO 3.1.2. Any user, even without admin privileges, can get access to the restricted SSH shell. By using the hidden backdoor "shell-escape" command it's possible to drop to a real root bash shell.
References
This module abuses a backdoor command in vmPRO 3.1.2. Any user, even without admin privileges, can get access to the restricted SSH shell. By using the hidden backdoor "shell-escape" command it's possible to drop to a real root bash shell.
References
Targets
- Quantum vmPRO 3.1.2
Platforms
- unix
Architectures
- cmd
Reliability
Development
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use exploit/linux/ssh/quantum_vmpro_backdoor
msf exploit(quantum_vmpro_backdoor) > show targets
...targets...
msf exploit(quantum_vmpro_backdoor) > set TARGET <target-id>
msf exploit(quantum_vmpro_backdoor) > show options
...show and set options...
msf exploit(quantum_vmpro_backdoor) > exploit
728x90
'Metasploit ' 카테고리의 다른 글
Katello (Red Hat Satellite) users/update_roles Missing Authorization (0) | 2014.03.28 |
---|---|
Firefox Gather Cookies from Privileged Javascript Shell (0) | 2014.03.28 |
Firefox Exec Shellcode from Privileged Javascript Shell (0) | 2014.03.27 |
Yokogawa CENTUM CS 3000 BKHOdeq.exe Buffer Overflow (0) | 2014.03.27 |
Safari User-Assisted Download and Run Attack (0) | 2014.03.27 |