CVE-2014-3008

Unitrends Enterprise Backup 7.3.0 - Authenticated OS Command Injection via SNMPD Comm Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-3008. PoCs published by Brandon Perry.

AI-analyzed exploit summary This exploit leverages a hardcoded 'auth' parameter and unsanitized SNMP community string input in Unitrends Enterprise Backup 7.3.0 to achieve unauthenticated remote command execution as root via command injection.

Description

Unitrends Enterprise Backup 7.3.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the comm parameter to recoveryconsole/bpl/snmpd.php.

Exploits (1)

exploitdb WORKING POC

by Brandon Perry · rubyremoteunix

https://www.exploit-db.com/exploits/32885

View Code ZIP pw:eip

This exploit leverages a hardcoded 'auth' parameter and unsanitized SNMP community string input in Unitrends Enterprise Backup 7.3.0 to achieve unauthenticated remote command execution as root via command injection.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Unitrends Enterprise Backup 7.3.0

No auth needed

Prerequisites: Network access to the target · SNMP service enabled on the target

MITRE ATT&CK