Login
From:
sector7.computest.nl
(Uncensored)
subscribe
XenServer - path traversal leading to authentication bypass · Sector 7
https://sector7.computest.nl/post/2018-08-xenserver/
links
backlinks
Roast topics
Find topics
Find it!
During a code review of XenServer, we found and exploited a vulnerability in the XAPI management service that allows an attacker to bypass authentication and remotely perform arbitrary XAPI calls with administrative privileges.
