This Metasploit module exploits an improper input sanitization in SpamTitan versions 7.01, 7.02, 7.03 and 7.07 to inject command directives into the SNMP configuration file and get remote code execution as root. Note that only version 7.03 needs authentication and no authentication is required for versions 7.01, 7.02 and 7.07.
cc011f3d97e6e780eac9a8ecaf045f486a51374234b82311aea352d9a57efef0
SpamTitan version 7.07 suffers from an unauthenticated remote code execution vulnerability in snmp-x.php.
46511399bed0e9da7c7e842465a1d68fcec18943d583bc702307a069fc3d4fa3