Riello UPS Restricted Shell Bypass

Riello UPS Restricted Shell Bypass: Posted Mar 17, 2023; Authored by Ricardo Jose Ruiz Fernandez; Riello UPS systems can have their restricted configuration shell bypassed to gain full underlying operating system access.; tags | exploit, shell, bypass; SHA-256 | 6ef7e8370834a1f65507385ad2f9fb981e57f39aa18bf52ca3a727aaa3955839; Download | Favorite | View

Riello UPS Restricted Shell Bypass


I. VULNERABILITY
-------------------------
Riello UPS systems allow to easily escape the configuration shell and get access to the operating system

II. VENDOR
-------------------------
Riello (https://www.riello-ups.es/)

III. DESCRIPTION
-------------------------
Riello UPS systems allow SSH access to configure the device, sometimes with the default credentials "admin:admin".

Using the "-t bash" or "-t /bin/bash" paramters it is possible to escape the restricted shell and get access to the operating system:

ssh admin@x.x.x.x -t bash

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,318)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,567)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,456)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Riello UPS Restricted Shell Bypass

Riello UPS Restricted Shell Bypass

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Riello UPS Restricted Shell Bypass

Share This

Riello UPS Restricted Shell Bypass

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems