firewall hacking

All posts tagged firewall hacking

Good evening friends. Firewalls are one of the most important components in the security of a network. Vulnerabilities in firewalls can be more serious. Today we will see one such vulnerability. IPFire is an open source firewall,router and VPN  built form LFS( Linux From Scratch ). All the versions below 2.19 of this firewall suffer from rce vulnerability in proxy.cgi page. Today we will see how to exploit this vulnerability with Metasploit. This vulnerability can be exploited only if credentials are known. So all users using credentials which can be guessed easilly are vulnerable.

Start Metasploit, load the exploit and check the options required.

ipfire

Type command “show payloads” to see all the payloads.

ipfirerc2

Set the required payload.

ipfirerc3

Set the required options as shown below. As already said, we need the credentials and of course the target IP address. After all the options are set, use the “run” command to execute the exploit. We will get the target’s shell as shown below.

ipfirerc4

To test this, type “ls” command to list the contents of the present directory.

ipfirerc5