Exploit module for CVE-2023-40044 (WS_FTP unauthenticated RCE) #18414
Commits on Oct 2, 2023
-
add in exploit module for CVE-2023-40044 - WS_FTP unauthenticated RCE…
… via .NET deserialization.
-
Explicitly state both the release name (e.g. 2022.0.2) and the versio…
…n number (e.g. 8.8.2) in a more consistent way.
Commits on Oct 3, 2023
-
Add a reference to the AssetNote blog. Better describe what teh TARGE…
…T_URI option is for and why it defaults to /AHT/
-
remove the powershell target as the powershell command adapter will h…
…andle this for us (thanks Spencer). Increate the space to handle the larger powershell command lines. I tested with cmd/windows/powershell/x64/meterpreter/reverse_tcp and the powershell command length was 4404.
Commits on Oct 4, 2023
-
change the payload space to 5000. This allows all the payloads I test…
…ed to work but also allows all the 3 gadget chains I tested to work. ClaimsPrincipal and TypeConfuseDelegate will fail if the space is too large.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.