|    |    |    | Today: 23-Aug-2017 |

ELIGIBLEBOMBSHELL TOPSEC Remote Code Execution

August 18, 2016 | Posted in ExploitAlert

ELIGIBLEBOMBSHELL is a remote code execution exploit for TOPSEC firewalls. It exploits an HTTP cookie command injection vulnerability and uses ETag examination for version detection. Versions affected include 3.2.100.010.1_pbc_17_iv_3 to 3.3.005.066.1. Note that this exploit is part of the recent public disclosure from the "Shadow Brokers" who claim to have compromised data from a team known as the "Equation Group", however, there is no author data available in this content.


Source: ELIGIBLEBOMBSHELL TOPSEC Remote Code Execution

Taged in: eligiblebombshell, execution, Remote, topsec