Share
## https://sploitus.com/exploit?id=5FE23343-82D1-5E14-81D5-DDB25BF28612
# CVE-2026-24061 Vulnerability Detection and Exploitation Tool
## Program Overview
This is a GUI tool designed for detecting and exploiting the CVE-2026-24061 vulnerability. This vulnerability is an authentication bypass flaw in GNU Inetutils’ telnetd component, allowing attackers to obtain root privileges without a username or password.
## Features
### Vulnerability Scanning
- Supports scanning of individual targets, IP ranges, and CIDR blocks
- Supports importing target lists from files
- Multi-threaded concurrent scanning for improved efficiency
- Real-time display of scan results, including vulnerability status and details
- Supports exporting scan results in CSV/Text formats
- Provides detailed scan logs
### Vulnerability Exploitation
- Batch management of identified vulnerability targets
- Supports multiple simultaneous terminal sessions
- Provides an interactive Root Shell
- Real-time display of command execution results
### Modern UI Design
- Dark theme for a comfortable visual experience
- Tabular data display for clarity
- Supports tab switching for convenient operation
- Provides detailed status notifications and log information
## Installation Steps
### 1. Install Python
Ensure that Python 3.8 or later is installed on your system.
### 2. Install Dependencies
Use pip to install required dependencies:
```bash
pip install -r requirements.txt
```
### 3. Run the Program
Simply run the Python script:
```bash
python cve_2026_24061_gui.py
```
## Usage Instructions
### 1. Vulnerability Scanning
1. **Add Targets**
- Enter the target in the text box (supports single IP, IP range, CIDR block)
- Click the "Add Target" button to add the target to the pending scan queue
- Or click the "Browse" button to import a target list from a file
2. **Configure Scan Parameters**
- Set the target port (default: 23)
- Set the number of concurrent threads (1-1000, default: 100)
3. **Start Scanning**
- Click the "Start Scanning" button to initiate the scan
- Monitor the scan progress and results in real-time
- Scan results will be displayed in a table, including the target host, port, vulnerability status, and details
4. **Manage Scan Results**
- Sort and filter scan results
- Click the "Export Report" button to export scan results
- Click the "Clear Log" button to clear log contents
### 2. Vulnerability Exploitation
1. **View Vulnerability Targets**
- Switch to the "Vulnerability Exploitation" tab
- All identified vulnerability targets are displayed in the left list
2. **Establish Connection**
- Double-click a target in the list to establish a terminal connection
- After successful connection, an interactive terminal will appear on the right side
3. **Execute Commands**
- Enter commands in the terminal input field
- Click the "Execute" button or press Enter to execute the command
- Command execution results are displayed in the terminal in real-time
4. **Manage Terminal Sessions**
- Supports multiple simultaneous terminal sessions
- You can switch between different terminals using the tabs
- Click the tab close button or the "Disconnect" button to terminate the connection
## Technical Parameters
- **Scan Configuration**
- Connection timeout: 3 seconds
- Read timeout: 3 seconds
- ID command timeout: 3 seconds
- Default user value: -f root
- **Performance Parameters**
- Maximum concurrent threads: 1000
- Maximum targets per scan task: Unlimited
- Number of supported terminal sessions: Unlimited (subject to system resources)
## Notes
1. **Legal Compliance**
- This tool is only used for legitimate security testing and research purposes
- Ensure that you have obtained authorization from the target system before using this tool
- Unauthorized use may violate laws and regulations
2. **Security Risks**
- The vulnerability exploitation feature will directly gain root access to the target system. Use with caution
- It is recommended to test in a isolated environment to avoid affecting production systems
3. **System Requirements**
- Windows 10/11 operating system is recommended
- At least 4GB of memory is required to support high-concurrency scanning
- Ensure a stable network connection to avoid scan interruptions
4. **Updates and Maintenance**
- Regularly check for tool updates to get the latest vulnerability detection and exploitation methods
- If you encounter issues or have suggestions for improvements, please report them promptly
## Frequently Asked Questions
### Q: Why does the scan result show "Connection Timeout"? A: It may be because the target system does not have the Telnet port open, or the network connection is unstable. Please check the target system's network settings and Telnet service status.
### Q: Why is the scan speed slow? A: The scan speed is affected by various factors, including network bandwidth, target system response time, and the number of concurrent threads. You can try adjusting the number of concurrent threads to optimize the scan speed.
### Q: Why does the connection attempt fail with "Connection Rejected"? A: It may be because the Telnet service on the target system is disabled, or the firewall blocks the connection. Please check the Telnet service status and firewall settings on the target system.
### Q: How to improve scan accuracy? A: It is recommended to perform scans in a stable network environment. Adjust the timeout period to avoid false positives. For important targets, perform multiple scans to confirm the results.
## Disclaimer
This tool is intended for learning and legitimate security testing purposes only. Do not use it for illegal purposes. Any consequences arising from using this tool are the responsibility of the user. The author assumes no legal liability.
## Copyright Information
© 2026 Lingze Security Team
All rights reserved.