This Metasploit module uses a dictionary to brute force valid usernames from Cerberus FTP server via SFTP. This issue affects all versions of the software older than 6.0.9.0 or 7.0.0.2 and is caused by a discrepancy in the way the SSH service handles failed logins for valid and invalid users. This issue was discovered by Steve Embling.
b093750085a1d17aa0852d4c39e66fa6eea1d5d4bbffc846638158df23d8b820
This Metasploit module exploits the SNMP write access configuration ability of SNMP-EXTEND-MIB to configure MIB extensions and lead to remote code execution.
702e8fa024af1fdfe52310f0907a43a2e55b297f9be065518dc96428e4d4315e