CVE-2012-1196

Related Files

LANDesk Lenovo ThinkManagement Console Remote Command Execution

Posted Apr 10, 2012

Authored by Andrea Micalizzi, juan vazquez | Site metasploit.com

This Metasploit module can be used to execute a payload on LANDesk Lenovo ThinkManagement Suite 9.0.2 and 9.0.3. The payload is uploaded as an ASP script by sending a specially crafted SOAP request to "/landesk/managementsuite/core/core.anonymous/ServerSetup.asmx" , via a "RunAMTCommand" operation with the command '-PutUpdateFileCore' as the argument. After execution, the ASP script with the payload is deleted by sending another specially crafted SOAP request to "WSVulnerabilityCore/VulCore.asmx" via a "SetTaskLogByFile" operation.

tags | exploit, asp

advisories | CVE-2012-1195, CVE-2012-1196, OSVDB-79276, OSVDB-79277

SHA-256 | 0f339f9c1af48dbfe9bfacaefebfc2b71162b36ed475e3bea07c0a38fda09f1b

Download | Favorite | View

LANDesk Lenovo ThinkManagement Suite 9.0.3 File Deletion

Posted Mar 20, 2012

Authored by rgod | Site retrogod.altervista.org

LANDesk Lenovo ThinkManagement Suite version 9.0.3 suffers from a core server remote arbitrary file deletion vulnerability.

tags | exploit, remote, arbitrary

advisories | CVE-2012-1196

SHA-256 | 0c80de7eb7401e75b9edafdab61c3336a8c7bbaca85898f61b94f2f26254ccd3

Download | Favorite | View