NOMISEC-w0lfzhang/sonicwall-cve-2019-7482

NOMISEC WORKING POC

Exploit for CVE-2019-7482 - SonicWall SMA100 <9.0.0.3 - Buffer Overflow

AI Analysis

This PoC exploits a stack-based buffer overflow in SonicWall (CVE-2019-7482) to achieve remote code execution via a crafted User-Agent header. It brute-forces libc addresses to bypass ASLR and spawns a reverse shell.

Attack Type

RCE

Complexity

moderate

Reliability

racy

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 2

https://github.com/w0lfzhang/sonicwall-cve-2019-7482

Stars 4

Forks 3

Last Push Feb 05, 2021

Authors

w0lfzhang

Vulnerability

CVE-2019-7482

SonicWall SMA100 <9.0.0.3 - Buffer Overflow

CRITICAL

CVSS 9.8