CVE-2017-9554
MEDIUM EXPLOITED IN THE WILDSynology DSM <6.1.3-15152 - Info Disclosure
Title source: llmExploitation Summary
CVE-2017-9554 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).
EIP tracks 4 public exploits from researchers including Steve Kaun, rfcl, Ez0-yf, including a Metasploit module auxiliary/scanner/http/synology_forget_passwd_user_enum.
AI-analyzed exploit summary This writeup describes a username enumeration vulnerability in Synology DiskStation Manager (DSM) via the 'forget_passwd.cgi' endpoint. The attack vector involves sending a GET request with a username parameter to check for valid usernames.
Description
An information exposure vulnerability in forget_passwd.cgi in Synology DiskStation Manager (DSM) before 6.1.3-15152 allows remote attackers to enumerate valid usernames via unspecified vectors.
Exploits (4)
This writeup describes a username enumeration vulnerability in Synology DiskStation Manager (DSM) via the 'forget_passwd.cgi' endpoint. The attack vector involves sending a GET request with a username parameter to check for valid usernames.
This Python script exploits CVE-2017-9554 to enumerate valid users on Synology DiskStation by sending HTTP requests to the forget_passwd.cgi endpoint and analyzing the response. It checks for the 'no mail or no priviege' message to confirm valid usernames.
This exploit tool targets CVE-2017-9554, a user enumeration vulnerability in Synology DiskStation Manager (DSM) versions before 6.1.3-15152. It leverages the 'forget_passwd.cgi' endpoint to enumerate valid usernames by comparing response patterns.
This Metasploit module enumerates users on Synology NAS devices by exploiting a user enumeration vulnerability in the forgot password functionality. It sends GET requests to the target and analyzes the response to determine if a user exists.
References (2)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N