EXPLOITDB-EDB-20113

EXPLOITDB ruby VERIFIED WORKING POC

Exploit for CVE-2012-2953 - Symantec Web Gateway <5.0.3.18 - RCE

AI Analysis

This Metasploit module exploits a command injection vulnerability in Symantec Web Gateway 5.0.2.18 via the 'filename' parameter in pbcontrol.php, allowing remote code execution without authentication.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type remote

Platform linux

Language ruby

Files 1

https://www.exploit-db.com/exploits/20113

Authors

Metasploit muts sinn3r

Vulnerability

CVE-2012-2953

Symantec Web Gateway <5.0.3.18 - RCE