CVE-2017-9757

This exploit targets a command injection vulnerability in IPFire 2.19's ids.cgi via the OINKCODE parameter, which is passed unsanitized to a system call. It includes a reverse shell payload and requires valid credentials or CSRF to exploit.

This exploit targets a buffer overflow vulnerability in SyncBreeze v10.0.28, delivering shellcode via a crafted HTTP POST request to the login endpoint. The payload includes a return address and NOP sled followed by malicious shellcode.

This Metasploit module exploits a remote command execution vulnerability in IPFire's ids.cgi via the OINKCODE field, allowing arbitrary command execution through backtick injection. It includes authentication handling and version checking to confirm target vulnerability.