Ektron 8.5 / 8.7 / 9.0 XSLT Transform Remote Code Execution Exploit

Ektron versions 8.5, 8.7 equal to and below sp1, and 9.0 before sp1 have vulnerabilities in various operations within the ServerControlWS.asmxweb services. These vulnerabilities allow for remote code execution without authentication and execute in the context of IIS on the remote system. This...

Ektron 8.5 / 8.7 / 9.0 XSLT Transform Remote Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'Ektron 8.5, 8.7, 9.0 XSLT Transform Remote Code Execution', 'Description' = %q Ektron 8.5, 8.7 'catatonicprime' , 'License' =...

CVE-2015-0923

The CVE-2015-0923 vulnerability affects Ektron CMS versions 8.5, 8.7 before 8.7sp2, and 9.0 before sp1, in ContentBlockEx via Workarea/ServerControlWS.asmx. An XML External Entity (XXE) flaw arises when an XML document is named in the xslt parameter, allowing remote, unauthenticated readers to ac...

Ektron CMS 'ServerControlWS.asmx' XML External Entity Injection Vulnerability

Ektron CMS is a content management system. An external entity injection vulnerability exists in the Ektron CMS 'ServerControlWS.asmx' XML due to the application failing to properly filter user-supplied input before dynamically generating content. An attacker could use this vulnerability to read t...