EXPLOITDB-EDB-18942

EXPLOITDB ruby VERIFIED WORKING POC

Exploit for CVE-2012-0297 - Symantec Web Gateway <5.0.3 - RCE

AI Analysis

This Metasploit module exploits a vulnerability in Symantec Web Gateway by injecting PHP code into the access log and then loading it via a directory traversal flaw to achieve remote code execution under the context of 'apache'.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1210 - Exploitation of Remote Services

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type remote

Platform linux

Language ruby

Files 1

https://www.exploit-db.com/exploits/18942

Authors

Metasploit muts sinn3r Unknown

Vulnerability

CVE-2012-0297

Symantec Web Gateway <5.0.3 - RCE