Once they had exploited the vulnerability, they had uploaded a malicious Lua script that allowed them to execute system commands on the server. The script was cleverly disguised as a legitimate configuration file, but John was able to spot it using his monitoring tools.
A viable information disclosure tool, but not a remote shell exploit . Searches for an "apache 2.4.18 shell exploit" due to HTTPOXY are misguided. apache httpd 2.4.18 exploit
: This allows a local user to gain full root access to the entire server. 2. Optionsbleed (CVE-2017-9798) Once they had exploited the vulnerability, they had
: Detailed technical walkthroughs and proof-of-concept code are available at Exploit-DB (EDB-ID: 46676) Exploit-DB Secondary Vulnerabilities Other risks associated with this version include: X.509 Authentication Bypass (CVE-2016-4979) : Affects the experimental HTTP/2 module ( Once they had exploited the vulnerability