CVE-2016-6600
CVE-2016-6600
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 90.6%KEV nãoPoC públicaNuclei —Metasploit simPatch —
Lifecycle
04 Jul 2016Metasploit module available
10 Aug 2016Public PoC
23 Jan 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
Directory traversal vulnerability in the file upload functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to upload and execute arbitrary JSP files via a .. (dot dot) in the fileName parameter to servlets/FileUploadServlet.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/138244/WebNMS-Framework-5.2-SP1-Traversal-Weak-Obfuscation-User-Impersonation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/40229/unverifiedexploitdbwww.exploit-db.com/exploits/40229unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://packetstormsecurity.com/files/138244/WebNMS-Framework-5.2-SP1-Traversal-Weak-Obfuscation-User-Impersonation.htmlhttps://blogs.securiteam.com/index.php/archives/2712http://seclists.org/fulldisclosure/2016/Aug/54https://forums.webnms.com/topic/recent-vulnerabilities-in-webnms-and-how-to-protect-the-server-against-themhttps://github.com/pedrib/PoC/blob/master/advisories/webnms-5.2-sp1-pwn.txthttps://www.exploit-db.com/exploits/40229/http://www.securityfocus.com/archive/1/539159/100/0/threadedhttp://www.securityfocus.com/bid/92402