.. / CVE-2018-17431

Exploit for Comodo Unified Threat Management Web Console - Remote Code Execution (CVE-2018-17431)

Description:

Comodo Firewall & Central Manager (UTM) All Release before 2.7.0 & 1.5.0 are susceptible to a web shell based remote code execution vulnerability.

Nuclei Template

View the template here CVE-2018-17431.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2018/CVE-2018-17431.yaml
Copy

References:

https://drive.google.com/file/d/0BzFJhNQNHcoTbndsUmNjVWNGYWNJaWxYcWNyS2ZDajluTDFz/view
https://www.exploit-db.com/exploits/48825
https://nvd.nist.gov/vuln/detail/CVE-2018-17431
https://github.com/Fadavvi/CVE-2018-17431-PoC#confirmation-than-bug-exist-2018-09-25-ticket-id-xwr-503-79437
https://secure.comodo.com/home/purchase.php?pid=106&license=try&track=9276&af=9276