← back
CVE-2018-7739

CVE-2018-7739

EPSS 54.6%
antsle antman before 0.9.1a allows remote attackers to bypass authentication via invalid characters in the username and password parameters, as demonstrated by a username=>&password=%0a string to the /login URI. This allows obtaining root permissions within the web management console, because the login process uses Java's ProcessBuilder class and a bash script called antsle-auth with insufficient input validation.
Affected products
n/a · n/a
public PoCs found4
cve_referencewww.exploit-db.com/exploits/44220/unverifiedcve_referencewww.exploit-db.com/exploits/44262/unverifiedexploitdbwww.exploit-db.com/exploits/44262unverifiedexploitdbwww.exploit-db.com/exploits/44220unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blog.codecatoctin.com/2018/02/antman-authentication-bypass.htmlhttps://www.exploit-db.com/exploits/44220/https://www.exploit-db.com/exploits/44262/