CVE-2024-23692 (Rejetto HFS Template Injection) – Offensive

Question

I'm stuck on the last question, number 8. Any help would be appreciated. I feel like I have tried numerous combinations with the query they provide, with no success.

What's the full file path to the executable used to run the Rejetto server on the victim machine?

autom8on · Answer

So - another victim of "not the best notes" combined with an old persons memory here... For Q8 - I have a note that "Tasklist gives us hfs.exe - but not the path?".

That clue is followed by a screenshot for the following query (which the output definitely shows the correct answer as part of):

Hope that is of some vague help? (if not only as a reminder to me to make better notes next time)

Forum Discussion

CVE-2024-23692 (Rejetto HFS Template Injection) – Offensive

1 Reply

Featured Places

Help

Related Content

Secure Testing: SQL Injection

AI: Plugin Injection - Demonstrate Your Skills

Rails: SQL Injection (Bugged?)

Confused in "Threat Modeling Fundamentals; SQL Injection and Server-Side Template Injection"

Offensive PowerShell: Demonstrate Your Skills

Recent Discussions

Purple Belt Generic: Lab - File Inclusion Vulnerabilities

Trick or Treat on Specter Street: Morphy’s Mansion

CVE-2022-30190 (Follina) ms-msdt Scheme Abuse – Offensive Question 11

Hack Your First PLC: Ep.3 – Discovering PLCs Using Wireshark

CVE-2022-33891 (Apache Spark) – Defensive Question 4