Presentation

It is possible to execute arbitary OS commands for an EON user that have the necessary right to use AutoDiscovery’s module. The field ‘Target’ isn’t check and it is possible to run arbitary commands. The command id is exploitable in the system : ;id #

Exploit

EONRCEv1

Impacted Version(s)

EON 5.3-0

Fixed Version(s)

EON 5.3-1

Fix

Download the latest EON fixed version.

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8654

http://packetstormsecurity.com/files/156266/EyesOfNetwork-5.3-Remote-Code-Execution.html

http://packetstormsecurity.com/files/156605/EyesOfNetwork-AutoDiscovery-Target-Command-Execution.html

https://github.com/EyesOfNetworkCommunity/eonweb/issues/50