3 matches found
CVE-2020-7385
By launching the drbremotecodeexec exploit, a Metasploit Framework user will inadvertently expose Metasploit to the same deserialization issue that is exploited by that module, due to the reliance on the vulnerable Distributed Ruby class functions. Since Metasploit Framework typically runs with...
CVE-2020-7385 Metasploit Framework 'drb_remote_codeexec' code execution
By launching the drbremotecodeexec exploit, a Metasploit Framework user will inadvertently expose Metasploit to the same deserialization issue that is exploited by that module, due to the reliance on the vulnerable Distributed Ruby class functions. Since Metasploit Framework typically runs with...
CVE-2020-7385
The CVE-2020-7385 issue affects Metasploit Framework via a deserialization flaw triggered when the drb_remote_codeexec module is used. The vulnerability stems from reliance on vulnerable Distributed Ruby class functions, and Metasploit is typically run with elevated privileges, enabling potential...