Light

horizon3ai / cve-2021-21972 Goto Github PK

View Code? Open in Web Editor NEW

248.0 10.0 86.0 125 KB

Proof of Concept Exploit for vCenter CVE-2021-21972

License: Apache License 2.0

Python 74.02% Java 25.98%

cve-2021-21972's Introduction

CVE-2021-21972

Proof of Concept Exploit for vCenter CVE-2021-21972

Research credit to: https://swarm.ptsecurity.com/unauth-rce-vmware/, http://noahblog.360.cn/vcenter-6-5-7-0-rce-lou-dong-fen-xi/

Tested on both Windows and Unix vCenter VCSA targets.

Usage

To benignly check if the target is vulnerable just supply the --target argument.

To exploit provide the --file, --path, and --operating-system flags. Write the file supplied in the --file argument to the location specified in the --path argument.

Windows Targets:

Tested by uploading the webshell cmdjsp.jsp to the /statsreport endpoint as indicated by PtSwarm. The webshell executes commands in the context of NT AUTHORITY/SYSTEM.

Unix Targets:

The file will be written in the context of the vsphere-ui user. If the target is vulnerable, but the exploit fails, it is likely that the vsphere-ui user does not have permissions to write to the specified path.

If writing the vsphere-ui user's SSH authorized_keys, when SSH'ing with the keys it was observed in some cases that the vsphere-ui user's password had expired and forced you to update it (which you cannot because no password is set).

cve-2021-21972's People

Contributors

Stargazers

Watchers

Forkers

eniac888 rvrsh3ll ricardo-garrido raikia weiwhy xstpl fengyuhetao jtsamas shino-337 bravery9 wayc0des-land jermainlaforce reverse-ex knightmare2600 affix keger fancysauced tounsi007 developer191 ch3rn0byl 740i zhouzu meshari10 mgargiullo jmousqueton fadinglr preventions njahrckstr no952712138 nyctophobiac taiji-xo mfadzilr willsonch m4rm0k yishu1980 ashr novice3128 zzzapzzz gsatyadev 0x00-0x00 mnfrankie ltvthang filipesam dorkerdevil phatblinkie simolin trendingtechnology zigmud ykankaya fdlucifer securityanalysts anonshadow tai-rex viracall crackercat gitttttbottttt a1124510616 ogt111 ayoubmarouan pizz33 darkfunct lfz97 30579096 ammasajan bb33bb uuuuuuzeus langyayue 147258369jhy shaddowdaniel gysf666 baizi123 safe3s ikpehlivan rassec txrw qlng ngodcomplex xp3s cihuuy msr0bots werwolfz fckoo pyking lolminerxmrig

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.