Nowadays, in almost all my penetration testing projects, HP dataprotector has been the most vulnerable software installed. I thought of porting the same as a metasploit exploit module. Hence, I wrote exploit for Hp_dataprotector_cmdexec. I will try to describe my work step by step. The input for this was a working exploit-db code (HP Data Protector Remote Root Shell for Linux). The shell code when run normally will give a netcat shell. So here I start up: 1. Took a standard ...
Updated 04-10-2012 at 04:21 PM by sohil_garg
Recent Comments