Cisco Firepower Management Console 6.0 - Post Authentication UserAdd (CVE-2016-6433)

No description provided by source. This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "Cisco Firepower Management Console 6.0 Post Authentication UserAdd Vulnerability",...

Cisco Firepower Management Console 6.0 - Post Authentication UserAdd (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule "Cisco Firepower Management Console 6.0 Post Authentication UserAdd Vulnerability", 'Description' = %q This module exploits a...

Cisco Firepower Management Console 6.0 Post Authentication UserAdd Exploit

This Metasploit module exploits a vulnerability found in Cisco Firepower Management Console. The management system contains a configuration flaw that allows the www user to execute the useradd binary, which can be abused to create backdoor accounts. Authentication is required to exploit this...

CVE-2016-6433

CVE-2016-6433 — Cisco Firepower Management Center (Threat Management Console) : The vulnerability affects Cisco Firepower Management Center 5.2.0–6.0.1, allowing remote authenticated users to execute arbitrary commands via crafted web-application parameters. Exploitation has been demonstrated in ...

Cisco Firepower Threat Management Command Execution

KL-001-2016-007 : Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access Title: Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access Advisory ID: KL-001-2016-007 Publication Date: 2016.10.05 Publication URL:...

Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access

Vulnerability Details Affected Vendor: Cisco Affected Product: Firepower Threat Management Console Affected Version: Cisco Fire Linux OS 6.0.1 build 37/build 1213 Platform: Embedded Linux CWE Classification: CWE-434: Unrestricted Upload of File with Dangerous Type, CWE-94: Improper Control of...

Cisco Firepower Threat Management Console 6.0.1 - Remote Command Execution

KL-001-2016-007 : Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access Title: Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access Advisory ID: KL-001-2016-007 Publication Date: 2016.10.05 Publication URL:...

Cisco Firepower Threat Management Console 6.0.1 - Remote Command Execution

Cisco Firepower Threat Management Console 6.0.1 - Remote Command Execution KL-001-2016-007 : Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access Title: Cisco Firepower Threat Management Console Remote Command Execution Leading to Root Access Advisory ID:...