Exploits / Vulnerability Discovered : 2019-01-16 |
Type : webapps |
Platform : php
This exploit / vulnerability Shoretel / mitel connect onsite 19.49.5200.0 remote code execution is for educational purposes only and if it is used you will do on your own risk!
Description
===========
There are multiple vulnerabilities in ShoreTel/Mitel Connect ONSITE ST 14.2
which, when chained together, result in remote code execution in the
context of the running service. The vendor was contacted by Jared McLaren
of SecureWorks in early 2018 but a proof of concept was not released. I had
access to a single device during the development of this exploit. As such,
your system paths may be different and you may need to edit this script to
fit your needs.
Solution
========
The vendor has released a response stating that the newest versions are not
affected. Please see their response for upgrade instructions.