CVE-2014-3080

IBM Global Console Manager <1.20.0.22575 XSS via KVM CGI or AVCT Alert Key

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-3080. PoCs published by Alejandro Alvarez Bravo.

AI-analyzed exploit summary The exploit demonstrates remote code execution (RCE) and arbitrary file read vulnerabilities in IBM 1754 GCM KVM switches (v1.20.0.22575 and prior). It leverages improper input sanitization in `systest.php` and `prodtest.php` to execute commands and read files, respectively.

Description

Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Alejandro Alvarez Bravo · textremotephp

https://www.exploit-db.com/exploits/34132

View Code ZIP pw:eip

The exploit demonstrates remote code execution (RCE) and arbitrary file read vulnerabilities in IBM 1754 GCM KVM switches (v1.20.0.22575 and prior). It leverages improper input sanitization in `systest.php` and `prodtest.php` to execute commands and read files, respectively.

Classification

Working Poc 95%

Attack Type

Rce | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: IBM 1754 GCM KVM switch v1.20.0.22575 and prior

Auth required

Prerequisites: Valid session ID (avctSessionId) · Network access to the target device

MITRE ATT&CK