CVE-2014-7288

Symantec PGP Universal Server & Encryption Management Server <3.3.2...

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-7288. PoCs published by Paul Craig.

AI-analyzed exploit summary This advisory details a remote command injection vulnerability in Symantec Encryption Management Server (CVE-2014-7288), where unfiltered user input in the 'filename' parameter is passed to a system command, allowing arbitrary command execution. The writeup includes assembly-level analysis and a proof-of-concept payload example.

Description

Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-backup restore action.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Paul Craig · textremotewindows

https://www.exploit-db.com/exploits/35949

View Code ZIP pw:eip

This advisory details a remote command injection vulnerability in Symantec Encryption Management Server (CVE-2014-7288), where unfiltered user input in the 'filename' parameter is passed to a system command, allowing arbitrary command execution. The writeup includes assembly-level analysis and a proof-of-concept payload example.

Classification

Writeup 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Symantec Encryption Management Server < 3.2.0 MP6

Auth required

Prerequisites: Administrator access to the Symantec Encryption Management Web Interface

MITRE ATT&CK