CVE-2006-3734

Cisco Security Monitoring, Analysis and Response System <4.2.1 - Co...

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3734. PoCs published by Jon Hart.

AI-analyzed exploit summary This Perl script exploits an insecure JBoss installation in Cisco/Protego CS-MARS < 4.2.1 to achieve remote command execution. It leverages the exposed JMX console to execute arbitrary commands, change passwords, upload files, or run BeanShell code.

Description

Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jon Hart · perlremotehardware

https://www.exploit-db.com/exploits/2048

View Code ZIP pw:eip

This Perl script exploits an insecure JBoss installation in Cisco/Protego CS-MARS < 4.2.1 to achieve remote command execution. It leverages the exposed JMX console to execute arbitrary commands, change passwords, upload files, or run BeanShell code.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Cisco/Protego CS-MARS < 4.2.1

No auth needed

Prerequisites: Network access to the JMX console on the target · JBoss jmx-console exposed and accessible

MITRE ATT&CK