Black Hat
Would you like to react to this message? Create an account in a few clicks or log in to continue.
Black Hat

Black Hat

You are not connected. Please login or register

PoC for CVE-2020-6207 Remote Code Execution [Fixed] (Missing Authentication Check in SAP Solution Manager)

Go down  Message [Page 1 of 1]


Yesterday i was reading a article in zdnet about a fresh exploit and PoC that allow remote code execution with the possibility to completely automate the exploitation. The PoC is easy to use and it only require some command lines to check if a host is vulnerable or not. If vulnerable it can execute exes.

View the article:

Note: The file is almost equal to the original but there is some fixes. Credits removed, User-Agent in the payload had a tracking code which was removed too.


Back to top  Message [Page 1 of 1]

Permissions in this forum:
You cannot reply to topics in this forum