codexlynx/CVE-2019-25024

Full exploit code for CVE-2019-25024 an unauthenticated command injection flaw in OpenRepeater.

[CVE-2019-25024] OpenRepeater (ORP) / Unauthenticated Command Injection

Advisories:

• MITRE CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25024
• US NIST: https://nvd.nist.gov/vuln/detail/CVE-2019-25024
• Tenable: https://www.tenable.com/cve/CVE-2019-25024
• VulDB: https://vuldb.com/?id.170172
• Ubuntu: https://ubuntu.com/security/CVE-2019-25024
• Debian: https://security-tracker.debian.org/tracker/CVE-2019-25024
• Launchpad: https://launchpad.net/bugs/cve/CVE-2019-25024

Usage:

$ python exploit.py
Usage: exploit.py <scheme>://<address> <command>