vendor:
DarkComet Server
by:
PseudoLaboratories
8.8
CVSS
HIGH
Remote Code Execution
78
CWE
Product Name: DarkComet Server
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Windows
2020
DarkComet Server File Upload Vulnerability
This exploit allows an attacker to upload arbitrary files to a vulnerable DarkComet server. The vulnerability exists in the way the server handles file uploads. The attacker can use the ‘FILETRANSFER’ command to upload a malicious file to the server, which can then be executed remotely. The exploit is written in Python and uses the Crypto.Cipher library to encrypt and decrypt data sent to and from the server.
Mitigation:
The best way to mitigate this vulnerability is to ensure that the server is running the latest version of DarkComet and that all security patches are applied.