إرسال #249450: Nxfilter NxFilter 4.3.2.5 LDAP Bind Request vulnerabilityالمعلومات

عنوانNxfilter NxFilter 4.3.2.5 LDAP Bind Request vulnerability
الوصفA LDAP Bind Request vulnerability is present in https://nxfilter/user,adap.jsp?actionFlag=test&id=1. It could lead to RCE. If we change the DC IP to the attacker IP, and in the attacker machine listen to the port 389 (with netcat), click the button "test" (or wait 15 minutes), NXFILTER will make a LDAP Bind Request to the Attacker machine, with its service account credentials in plain text. That way, an attacker can steal the service account of NXFILTER and log in the Domain with those credentials.
المصدر⚠️ https://nxfilter/user,adap.jsp?actionFlag=test&id=1
المستخدم
 0xgordo (UID 50709)
ارسال08/12/2023 05:56 PM (3 سنوات منذ)
الاعتدال17/12/2023 09:25 AM (9 days later)
الحالةتمت الموافقة
إدخال VulDB248267 [Jahastech NxFilter 4.3.2.5 Bind Request user,adap.jsp?actionFlag=test&id=1 تجاوز الصلاحيات]
النقاط17

Interested in the pricing of exploits?

See the underground prices here!