Name: Nagios XI Prior to 5.6.6 getprofile.sh Authenticated Remote Command ExecutionModule: exploit/linux/http/nagios_xi_plugins_check_plugin_authenticated_rceSource code: modules/exploits/linux/http/nagios_xi_plugins_check_plugin_authenticated_rce.rbDisclosure date: 2019-07-29Last modification time: 2021-08-27 17:15:33 +0000Supported architecture(s): -Supported platform(s): -Target service / protocol: http, httpsTarget network port(s): 80, 443, 3000, 8000, 8008, 8080, 8443, 8880, 8888List of CVEs: CVE-2019-15949

Nagios Xi License Key Crack [WORK]

This module exploits a vulnerability in the getprofile.shscript of Nagios XI prior to 5.6.6 in order to upload amalicious check_ping plugin and thereby execute arbitrarycommands. For Nagios XI 5.2.0-5.4.13, the commands are runas the nagios user. For versions 5.5.0-5.6.5 the commandsare run as root. Note that versions prior to 5.2.0 willstill be marked as being vulnerable however this module doesnot presently support exploiting these targets. The moduleuploads a malicious check_ping plugin to the Nagios XIserver via /admin/monitoringplugins.php and then executesthis plugin by issuing a HTTP GET request to download asystem profile from the server. For all supported targetsexcept Linux (cmd), the module uses a command stager towrite the exploit to the target via the malicious plugin.This may not work if Nagios XI is running in a restrictedUnix environment, so in that case the target must be set toLinux (cmd). The module then writes the payload to themalicious plugin while avoiding commands that may not besupported. Valid credentials for a user with administrativeprivileges are required. This module was successfully testedon Nagios XI 5.3.0 and Nagios 5.6.5, both running on CentOS7. For vulnerable versions before 5.5.0, it may take asignificant amount of time for the payload to get back (upto 5 minutes). If exploitation fails against an oldersystem, it is recommended to increase the WfsDelay setting(default is 300 seconds). See the documentation for moreinformation. 2ff7e9595c