NSE LIB

Unofficial safe Safe

2450-RCE_CVE2021_42013

The Apache Web Server contains a RCE vulnerability. This script detects and exploits this vulnerability with RCE attack (execute commands) and local file disclosure.

Ports

Any

Protocols

n/a

Attribution

Maurice LAMBERT <mauricelambert434@gmail.com> (upstream: chinarulezzz/nmap-extra-nse)

Usage

Copy the command and adjust the target or script arguments as needed.

nmap -p 80 --script RCE_CVE2021_42013 [--script-args ("file=<file>"|"command=<command>")] <target>

Overview

Imported from the upstream repository chinarulezzz/nmap-extra-nse. The Apache Web Server contains a RCE vulnerability. This script detects and exploits this vulnerability with RCE attack (execute commands) and local file disclosure.

References

View Upstream Script Source

Output Preview

~# nmap -p 80 --script RCE_CVE2021_42013 172.17.0.2
PORT     STATE SERVICE
80/tcp open  http-proxy
| RCE_CVE2021_42013:
|   CVE-2021-42013:
|     title: Apache CVE-2021-42013 RCE