Skip to content
/ CVE-2024-28741-northstar-agent-rce-poc Public

Agent RCE PoC for CVE-2024-28741, a stored XSS vulnerability in NorthStar C2.

4 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

chebuya/CVE-2024-28741-northstar-agent-rce-poc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
exploit.py
exploit.py
 
 

Repository files navigation

NorthStar C2 agent RCE via stored XSS

Agent RCE PoC for CVE-2024-28741, a stored XSS vulnerability in NorthStar C2.

This exploit works by sending multiple malicious agent registration requests to the teamserver to incrementally build a functioning javascript payload in the logs web page. This XSS can be leveraged to execute commands on NorthStar C2 agents

Full explanation: https://blog.chebuya.com/posts/discovering-cve-2024-28741-remote-code-execution-on-northstar-c2-agents-via-pre-auth-stored-xss/

northstarc2-poc.mp4

About

Agent RCE PoC for CVE-2024-28741, a stored XSS vulnerability in NorthStar C2.

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages