Seagate Central Storage 2015.0916 User Creation / Command Execution

This Metasploit module exploits the broken access control vulnerability in Seagate Central External NAS Storage device. Subject product suffers several critical vulnerabilities such as broken access control. It makes it possible to change the device state and register a new admin user which is capable of SSH access.

access access control broken access control change command control critical critical vulnerabilities device exploits external metasploit nas product register seagate ssh state storage vulnerabilities vulnerability