Web
Nmap discovered a web server running on the target port 80
Webroot
It’s hosting NVMS-1000
Attempting for weak/default credential doesn’t work as it was mentioned in a Nathan’s note in the FTP server.
Vulnerabilities
└─$ searchsploit NVMS
------------------------------------------------------------------ ---------------------------------
Exploit Title | Path
------------------------------------------------------------------ ---------------------------------
NVMS 1000 - Directory Traversal | hardware/webapps/47774.txt
OpenVms 5.3/6.2/7.x - UCX POP Server Arbitrary File Modification | multiple/local/21856.txt
OpenVms 8.3 Finger Service - Stack Buffer Overflow | multiple/dos/32193.txt
TVT NVMS 1000 - Directory Traversal | hardware/webapps/48311.py
------------------------------------------------------------------ ---------------------------------
Shellcodes: No Results
Papers: No ResultsHowever, it would appear that NVMS-1000 suffers from directory traversal vulnerabilities