Showing 26 - 28 of 28

Files from jheysel-r7

First Active	2021-05-17
Last Active	2024-04-24

Polkit D-Bus Authentication Bypass: Posted Jul 9, 2021; Authored by Spencer McIntyre, jheysel-r7, Kevin Backhouse | Site metasploit.com; A vulnerability exists within the polkit system service that can be leveraged by a local, unprivileged attacker to perform privileged operations. In order to leverage the vulnerability, the attacker invokes a method over D-Bus and kills the client process. This will occasionally cause the operation to complete without being subjected to all of the necessary authentication. The exploit module leverages this to add a new user with a sudo access and a known password. The new account is then leveraged to execute a payload with root privileges.; tags | exploit, local, root; advisories | CVE-2021-3560; SHA-256 | 4a469ac4141ad75d095a953ed9262ad9287b8c479e96a68695a89371d81439eb; Download | Favorite | View

Cisco HyperFlex HX Data Platform File Upload / Remote Code Execution: Posted Jun 17, 2021; Authored by wvu, Mikhail Klyuchnikov, jheysel-r7, Nikita Abramov | Site metasploit.com; This Metasploit module exploits an unauthenticated file upload vulnerability in Cisco HyperFlex HX Data Platform's /upload endpoint to upload and execute a payload as the Tomcat user.; tags | exploit, file upload; systems | cisco; advisories | CVE-2021-1499; SHA-256 | f5c93c1dbb7c46d018f80b02b7e8b65d92e05da4eaa8f1ef27222f385aefb954; Download | Favorite | View

Microsoft Windows TokenMagic Privilege Escalation: Posted May 17, 2021; Authored by James Forshaw, bwatters-r7, jheysel-r7, Ruben Boonen | Site metasploit.com; This Metasploit module leverages a UAC bypass (TokenMagic) in order to spawn a process/conduct a DLL hijacking attack to gain SYSTEM-level privileges. Windows 7 through Windows 10 1803 are affected.; tags | exploit; systems | windows; SHA-256 | 3d550555fdb7911177d802cb18251bb90d83981e45b93f363dcca79c2f431810; Download | Favorite | View

Page 2 of 2 Back 1 2 Next

Top Authors In Last 30 Days