Home / exploitsPDF  

AwindInc SNMP Service Command Injection

Posted on 05 September 2019

This Metasploit module exploits a vulnerability found in AwindInc and OEM'ed products where untrusted inputs are fed to ftpfw.sh system command, leading to command injection. A valid SNMP read-write community is required to exploit this vulnerability.

 

TOP