CVE-2015-1497

This Metasploit module exploits a command injection vulnerability in HP Client Automation's Notify Daemon (radexecd.exe), which lacks authentication for execution requests. It supports both Windows and Linux targets, achieving remote code execution by injecting commands into the 'hide' command parameter.

This exploit demonstrates a command injection vulnerability in HP Client Automation (CVE-2015-1497) by sending crafted network packets to port 3465. It includes payloads for both Linux and Windows targets to add privileged users and establish reverse shells.

This Metasploit module exploits a command injection vulnerability in Persistent Systems Client Automation (PSCA) by installing a malicious service via SMB and executing a payload. It targets versions 7.9, 8.1, 9.0, and 9.1 on Windows systems.

This Metasploit module exploits a command injection vulnerability in HP Client Automation's Notify Daemon (radexecd.exe), which lacks authentication by default. It supports both Windows and Linux targets, achieving remote code execution via crafted commands.