CoreDial sipXcom sipXopenfire 21.04 Remote Command Execution / Weak Permissions

CoreDial sipXcom sipXopenfire version 21.04 suffers from XMPP message system command argument injection and insecure service file permissions that when chained together gives root.   Exploit Files ≈ Packet Storm 

 

More To Explore