Command.Line.Executer.Code.Execution
Description
Command Line Executer (CLE) is now available for exploits. It will try to load MOSDEF shells on remote systems given the ability to run commands blindly. Useful especially for web passthrough()/system()/popen() bugs. Currently tested on Linux/x86 and Windows/x86. The Windows version supports TFTP and debug.exe methods of uploading files, and the Unix version supports several TCP and HTTP uploaders.
Affected Products
N/A
Impact
Remote Code Execution.
Recommended Actions
N/A
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-02 | 16.972 |