It allows remote code execution
My understanding is that you would effectively need psexec access to exploit this, do we agree on that?
-
-
Nope. Nmap exploit module is here: https://svn.nmap.org/nmap/scripts/smb-webexec-exploit.nse …
-
I read it, but I can't get past this "Given a Windows account (local or domain), this will start an arbitrary executable" , that requirement means it misses the bar for RCE for me.
- 37 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.