Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Add Nagios XI 5.5.6 Root Remote Code Execution Module #11987
Add Nagios XI 5.5.6 Root Remote Code Execution Module
To test the exploit, I used Ubuntu 18.04 LTS x64 in a VM and I installed Nagios XI 5.5.6 from the official website (https://www.nagios.com/downloads/nagios-xi/older-releases/).
Sorry for the wait. For some reason I ended up going down some silly path trying to install Nagios XI, but it turned out to be actually easy. Anyways, the module works fine for me:
But I'll do a little touch up here and there to clean up the code a little bit (don't worry, just minor stuff!). And then I will land this pull request. Thank you @yaumn. It's a really cool module! :-)
Jun 25, 2019
This module exploits two vulnerabilities in Nagios 5.5.6:
When combined, these two vulnerabilities give us a root reverse shell.