7 :80 elastix 2.2.0 RCE + privesc

Using https://www.exploit-db.com/exploits/18650

Fix SSL cert issue: https://stackoverflow.com/questions/19268548/python-ignore-certificate-validation-urllib2

To find extension

$ svwar -m INVITE -e100-999 10.10.10.7
WARNING:TakeASip:using an INVITE scan on an endpoint (i.e. SIP phone) may cause it to ring and wake up people in the middle of the night
+-----------+----------------+
| Extension | Authentication |
+===========+================+
| 233       | reqauth        |
+-----------+----------------+


urllib.error.URLError: <urlopen error [SSL: UNSUPPORTED_PROTOCOL] unsupported protocol (_ssl.c:1123)>
to fix this error:

$ sslscan 10.10.10.7   
Version: 2.0.9-static
OpenSSL 1.1.1l-dev  xx XXX xxxx

Connected to 10.10.10.7

Testing SSL server 10.10.10.7 on port 443 using SNI name 10.10.10.7

SSL/TLS Protocols:
SSLv3     enabled
TLSv1.0   enabled


kali file: /etc/ssl/openssl.cnf
[system_default_sect]
MinProtocol = TLSv1.2
CipherString = DEFAULT@SECLEVEL=2

We need to change to:sv
MinProtocol = None
CipherString = None
PreviousBEEPNext6 :10000 webmin

Last updated