CVE-2017-16666

HIGH

Xplico <1.2.1 - Authenticated RCE

Title source: llm

Description

Xplico before 1.2.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the name of an uploaded PCAP file. NOTE: this issue can be exploited without authentication by leveraging the user registration feature.

Exploits (2)

metasploit WORKING POC EXCELLENT

by Mehmet Ince <[email protected]> · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/xplico_exec.rb

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Mehmet Ince · rubyremotelinux

https://www.exploit-db.com/exploits/43430

View Code ZIP pw:eip

References (6)

[Third Party Advisory] http://blog.securityonion.net/2017/11/security-advisory-for-xplico-120.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/145639/Xplico-Remote-Code-Execution.html

[Exploit, Third Party Advisory] http://www.rapid7.com/db/modules/exploit/linux/http/xplico_exec

[Exploit, Third Party Advisory] https://pentest.blog/advisory-xplico-unauthenticated-remote-code-execution-cve-2017-16666/

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/43430/

[Vendor Advisory] https://www.xplico.org/archives/1538

Scores

CVSS v3 8.8

EPSS 0.8076

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-78

Status published

Affected Products (1)

xplico/xplico < 1.2.1

Timeline

Published Jan 05, 2018

Tracked Since Feb 18, 2026