NOPcon is a free non-profit hacker conference without any sales pitches. The third edition has released its call for papers and will take place September 16th, 2014 in Istanbul, Turkey.
c7884602d1753e25d327ec7fdedbeaf2782a4e004f6f85a6bbd2c75be85fe13e
This Metasploit module will exploit an unauthenticated SQL injection in order to gain a shell on the remote victim. This was tested against PowerIQ version 4.1.0. The 'check' command will attempt to pull the banner of the DBMS (PGSQL) in order to verify exploitability via boolean injections. In order to gain remote command execution, multiple vulnerabilities are used.
82be59d3b7e4fb6726460b589da8c608cb66c0ecd7ab47efe0c8055b4159d2f7