CVEs-PoC/2014/CVE-2014-8687.md at 8709d3958af388aed0b04fa0abd3dfd21ea38683

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-25 04:24:05 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

Seagate Business NAS devices with firmware before 2015.00322 allow remote attackers to execute arbitrary code with root privileges by leveraging use of a static encryption key to create session tokens.

POC

Reference

http://packetstormsecurity.com/files/130585/Seagate-Business-NAS-2014.00319-Remote-Code-Execution.html
http://packetstormsecurity.com/files/130585/Seagate-Business-NAS-2014.00319-Remote-Code-Execution.html
http://packetstormsecurity.com/files/130609/Seagate-Business-NAS-Unauthenticated-Remote-Command-Execution.html
http://packetstormsecurity.com/files/130609/Seagate-Business-NAS-Unauthenticated-Remote-Command-Execution.html
https://beyondbinary.io/articles/seagate-nas-rce/
https://beyondbinary.io/articles/seagate-nas-rce/
https://www.exploit-db.com/exploits/36202/
https://www.exploit-db.com/exploits/36202/
https://www.exploit-db.com/exploits/36264/
https://www.exploit-db.com/exploits/36264/

Github

https://github.com/dino213dz/sbar

1.3 KiB Raw Blame History

CVE-2014-8687

Description

POC

Reference

Github

1.3 KiB

Raw Blame History