Exploitation Summary
EIP tracks 4 public exploits for CVE-2015-1497.
PoCs published by Metasploit, SlidingWindow, Ben Turner, including Metasploit module exploits/multi/misc/persistent_hpca_radexec_exec.
AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in HP Client Automation's Notify Daemon (radexecd.exe), which lacks authentication for execution requests. It supports both Windows and Linux targets, achieving remote code execution by injecting commands into the 'hide' command parameter.
Description
radexecd.exe in Persistent Systems Radia Client Automation (RCA) 7.9, 8.1, 9.0, and 9.1 allows remote attackers to execute arbitrary commands via a crafted request to TCP port 3465.
Exploits (4)
This Metasploit module exploits a command injection vulnerability in HP Client Automation's Notify Daemon (radexecd.exe), which lacks authentication for execution requests. It supports both Windows and Linux targets, achieving remote code execution by injecting commands into the 'hide' command parameter.
This exploit demonstrates a command injection vulnerability in HP Client Automation (CVE-2015-1497) by sending crafted network packets to port 3465. It includes payloads for both Linux and Windows targets to add privileged users and establish reverse shells.
This Metasploit module exploits a command injection vulnerability in Persistent Systems Client Automation (PSCA) by installing a malicious service via SMB and executing a payload. It targets versions 7.9, 8.1, 9.0, and 9.1 on Windows systems.
This Metasploit module exploits a command injection vulnerability in HP Client Automation's Notify Daemon (radexecd.exe), which lacks authentication by default. It supports both Windows and Linux targets, achieving remote code execution via crafted commands.