Riello UPS Restricted Shell Bypass

Riello UPS Restricted Shell Bypass: Posted Mar 17, 2023; Authored by Ricardo Jose Ruiz Fernandez; Riello UPS systems can have their restricted configuration shell bypassed to gain full underlying operating system access.; tags | exploit, shell, bypass; SHA-256 | 6ef7e8370834a1f65507385ad2f9fb981e57f39aa18bf52ca3a727aaa3955839; Download | Favorite | View

Riello UPS Restricted Shell Bypass


I. VULNERABILITY
-------------------------
Riello UPS systems allow to easily escape the configuration shell and get access to the operating system

II. VENDOR
-------------------------
Riello (https://www.riello-ups.es/)

III. DESCRIPTION
-------------------------
Riello UPS systems allow SSH access to configure the device, sometimes with the default credentials "admin:admin".

Using the "-t bash" or "-t /bin/bash" paramters it is possible to escape the restricted shell and get access to the operating system:

ssh admin@x.x.x.x -t bash

Top Authors In Last 30 Days

Red Hat 136 files
Ubuntu 97 files
Debian 24 files
LiquidWorm 10 files
Google Security Research 10 files
Muhammad Navaid Zafar Ansari 7 files
Abdulhakim Oner 6 files
fearzzzz 5 files
nu11secur1ty 5 files
Ivan Fratric 5 files

File Archives

Systems

AIX (426)
Apple (1,951)
BSD (370)
CentOS (55)
Cisco (1,919)
Debian (6,710)
Fedora (1,691)
FreeBSD (1,242)
Gentoo (4,288)
HPUX (878)
iOS (338)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,054)
Mac OS X (684)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (12,874)
Slackware (941)
Solaris (1,609)
SUSE (1,444)
Ubuntu (8,426)
UNIX (9,205)
UnixWare (185)
Windows (6,530)
Other

Riello UPS Restricted Shell Bypass

Riello UPS Restricted Shell Bypass

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Riello UPS Restricted Shell Bypass

Share This

Riello UPS Restricted Shell Bypass

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems