Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

McAfee ePolicy Orchestrator - Arbitrary File Upload

By kannthu

High
Vidoc logoVidoc Module
#mcafee#rce#
Description
Author: dwisiswant0 McAfee ePolicy Orchestrator (ePO) is vulnerable to a ZipSlip vulnerability which allows arbitrary file upload when archives are unpacked if the names of the packed files are not properly sanitized. An attacker can create archives with files containing "../" in their names, making it possible to upload arbitrary files to arbitrary directories or overwrite existing ones during archive extraction. Reference - https://swarm.ptsecurity.com/vulnerabilities-in-mcafee-epolicy-orchestrator/ Metadata max-request: 1

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/stat.jsp?cmd=chcp+4...
Matching conditions
status: 200and
word: text/htmland
regex: Volume (in drive [A-Z]|Serial Number) is
Passive global matcher
No matching conditions.
On match action
Report vulnerability