all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Fortinet FortiNAC keyUpload.jsp Arbitrary File Write

Add to bookmarks

Web: https://packetstormsecurity.com/files/171351/fortinac_keyupload_file_write.rb.txt

March 15, 2023, 2:45 p.m. |

Packet Storm packetstormsecurity.com

This Metasploit module uploads a payload to the /tmp directory in addition to a cron job to /etc/cron.d which executes the payload in the context of the root user. The core vulnerability is an arbitrary file write issue in /configWizard/keyUpload.jsp which is accessible remotely and without authentication. When you send the vulnerable endpoint a ZIP file, it will extract an attacker controlled file to a directory of the attackers choice on the target system. This issue is exploitable on FortiNAC …

fortinac fortinet fortinet fortinac

Visit resource

More from packetstormsecurity.com / Packet Storm

Ubuntu Security Notice USN-5991-1 1 day, 20 hours ago | packetstormsecurity.com
notice security security notice ubuntu +1
Ubuntu Security Notice USN-5990-1 1 day, 20 hours ago | packetstormsecurity.com
notice security security notice ubuntu +1
Ubuntu Security Notice USN-5989-1 1 day, 20 hours ago | packetstormsecurity.com
notice security security notice ubuntu +1
Judging Management System 1.0 Shell Upload 1 day, 20 hours ago | packetstormsecurity.com
management shell system
Judging Management System 1.0 SQL Injection 1 day, 20 hours ago | packetstormsecurity.com
injection management sql sql injection +1
EQ Enterprise Management System 2.2.0 SQL Injection 1 day, 20 hours ago | packetstormsecurity.com
enterprise injection management sql +2
Online Pizza Ordering 1.0 SQL Injection 1 day, 20 hours ago | packetstormsecurity.com
injection sql sql injection
rconfig 3.9.7 SQL Injection 1 day, 20 hours ago | packetstormsecurity.com
injection rconfig sql sql injection
CoolerMaster MasterPlus 1.8.5 Unquoted Service Path 1 day, 20 hours ago | packetstormsecurity.com
path service

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Product Security Architect / Red Team PenTester for AUTOSAR (m/w/d)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Cloud Security Engineer - 100% US REMOTE

@ Experian | Allen, TX, United States
View on infosec-jobs.com

System Security Analyst

@ Ashburn Consulting | Baltimore, MD, United States
View on infosec-jobs.com

Senior Advisor, Cyber

@ NielsenIQ | Chicago, IL, United States
View on infosec-jobs.com

Junior Application Security Engineer

@ Netcompany-Intrasoft | Athens, Greece
View on infosec-jobs.com

IT and process Control Security Architect

@ Statkraft | Oslo, Norway
View on infosec-jobs.com

Data Scientist, Sr. Consultant - Cybersecurity AI Research & Products

@ Visa | Ashburn, VA, United States
View on infosec-jobs.com

Senior Platform Security Engineer

@ Block | Melbourne, Australia
View on infosec-jobs.com

Snr Security Engineer (cloud)

@ Verisk | Málaga, Spain
View on infosec-jobs.com

Cybersecurity Analyst

@ Visa | Bengaluru, India
View on infosec-jobs.com

Information Security Engineer

@ ServiceNow | Orlando, FL, United States
View on infosec-jobs.com

Director of Cloud Security - 100% US REMOTE

@ Experian | Allen, TX, United States
View on infosec-jobs.com