CVE-2020-35710

by Fred · 25/12/2020

Parallels Remote Application Server (RAS) 18 allows remote attackers to discover an intranet IP address because submission of the login form (even with blank credentials) provides this address to the attacker’s client for use as a "host" value. In other words, after an attacker’s web browser sent a request to the login form, it would automatically send a second request to a RASHTML5Gateway/socket.io URI with something like "host":"192.168.###.###" in the POST data.

Date published : 2020-12-25

Artículo donde explico cómo Parallels RAS Gateway Secure revela el espacio de direcciones IP interno de la organización. Leak++ #Hacking #Pentesting https://t.co/WuevhztnBX pic.twitter.com/lqusLiH6Zn

— Amador Aparicio (@amadapa) December 25, 2020

https://www.elladodelmal.com/2020/12/blue-team-red-team-como-parallels-ras.html

CVE-2020-35710

Similar

Recent Posts

Categories

CVE-2020-35710

Share this:

Similar

Recent Posts

Categories

Tags