ProFTPD 'mod_copy' is a remote arbitrary file copy vulnerability.
It is affected by a vulnerability in the mod_copy module which fails to honor [Limit READ] and [Limit WRITE] configurations as expected.
An unauthenticated, remote attacker can exploit this, by using the mod_copy module’s functionality, in order to copy arbitrary files in the FTP directory, provided that anonymous logins and mod_copy are enabled and the FTP directory is accessible from a web server. If a file exists in the FTP directory that contains PHP code but does not use the PHP extension, an attacker can copy this file to one with a PHP extension in order to execute code.
(Source: vulners.com)
In this video i demonstrate how to gain reverse shell and ROOT privilege escalation on a vulnerable VM (Metasploitable3) using the Metasploit framework and this vulnerability.
⚠ Everything shown in this video is for educational purposes, don't ever attempt to use the content of this video with the intent of causing harm to others or without explicit/written permission.
Негізгі бет Metasploitable3 - ProFTPD mod_copy exploit with Metasploit.
Пікірлер: 9