BeamCtrl Airiana Insecure Deserialization Vulnerability in coef Script Leading to Remote Code Execution
Vulnerability
A vulnerability exists in BeamCtrl Airiana versions through 11.0, specifically in the coef script. This issue arises from insecure deserialization, as the script uses Python's pickle.load() to read data from coeficients.dat without proper validation. This flaw allows an attacker to execute arbitrary code by substituting the .dat file with a malicious payload. The vulnerability requires local exploitation.
Impact
Exploitation of this vulnerability allows for remote code execution on the system where the application is running.
Reproduction
To reproduce this vulnerability, clone the BeamCtrl Airiana repository and navigate to the coef directory. Create a malicious coeficients.dat file using a Python script that leverages the pickle module to serialize an object designed to execute a command when deserialized. Once the malicious .dat file is created, run the coef script. The injected command will be executed, demonstrating the successful exploitation of the vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.