• Report Links
    We do not store any files or images on our server. XenPaste only index and link to content provided by other non-affiliated sites. If your copyrighted material has been posted on XenPaste or if hyperlinks to your copyrighted material are returned through our search engine and you want this material removed, you must contact the owners of such sites where the files and images are stored.

PoC for CVE-2020-6207 [Fixed] (Missing Authentication Check in SAP Solution Manager)

X

XMAN

Well-known member
Joined
Jul 12, 2021
Messages
20,446
Reaction score
108
Points
63
PoC for CVE-2020-6207 [Fixed] (Missing Authentication Check in SAP Solution Manager) 01-22-2021, 07:45 PM #1
Yesterday i was reading a article in zdnet about a fresh exploit and PoC that allow remote code execution with the possibility to completely automate the exploitation. The PoC is easy to use and it only require some command lines to check if a host is vulnerable or not. If vulnerable it can execute exes.

View the article:
https://www.zdnet.com/article/automated-...-the-wild/

Note: The file is almost equal to the original but there is some fixes. Credits removed, User-Agent in the payload had a tracking code which was removed too.

Download:
https://anonfiles.com/X5QfD9Bap8/SAP_CVE-2020-6207_zip
 
Upvote 0 Downvote
You must log in or register to reply here.
Top