F5 load balancers vulnerable to libssh auth bypass CVE-2018-10933 https://support.f5.com/csp/article/K52868493 … - carnage begins.
-
-
yeah I cannot get it to spawn a shell, just open new channels and proxy through the server? that is disappointing.
-
I haven't been able to spawn a shell with any of the libssh-based server code I've tried. Which raises a question: What target has the Metasploit (or python) exploit been successful (shell) against? Best I've seen is "authentication successful" on server side, but nothing after.
- 1 more reply
New conversation -
-
-
Interesting - it's basically CASB for SSH!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.