tags: ivantiNETenterprise_app original link: The real slim shady || Ivanti Endpoint Manager (EPM) Pre-Auth RCE CVE-2024-29847 newsletter link: exploits.club Weekly Newsletter 39 - bug.directory, Fuzzing Successes, SLUB Internals, and More
Exploits Club Summary:
@SinSinology released a post this week detailing a pre-auth RCE he found inâŠyou guessed itâŠan Ivanti product. The post doubles as a primer on .NET Remoting and its (many) downfalls. Specifically, the post looks at some of the previous work by @tiraniddo and demonstrates how exploitation can be a bit more difficult constrained when with Low Type Filter is enabled. The post takes Forshawâs 2019 methods and demonstrates how they can be applied directly to the Ivanti vuln, concluding with the release of a limited compiled PoC (sorry, script kiddies).