-
Notifications
You must be signed in to change notification settings - Fork 13.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add QNAP NAS/NVR administrator hash disclosure #7956
Conversation
wvu
commented
Feb 14, 2017
•
edited
Loading
edited
6420559
to
dabe4f3
Compare
6990055
to
12576c6
Compare
0d77a0a
to
0ed557c
Compare
b6c8ca9
to
a1bc03e
Compare
I've seen this in action, nice module @wvu ! |
I don't think print_debeug is a thing. If we want to bring back the actual print_debug, I'm fine with it. |
Also, module docs please, and then I think this is landable. |
I never really tested port 80, so I wonder why I didn't change this. Turns out 80 isn't even the vuln service. Welp. Hat tip @bcoles.
3 was a bit too low. I was using 10 and had more success with it.
LTGM, thanks for the updates! |
Release NotesThe QNAP NAS/NVR Administrator Hash Disclosure exploit has been added to the framework. It exploits combined heap and stack buffer overflows for QNAP NAS and NVR devices to dump the admin (root) shadow hash from memory. |