{"uuid": "515fdced-3d96-4030-952d-a8b34ee7c677", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-18935", "type": "published-proof-of-concept", "source": "https://t.me/hackerlibrary/266", "content": "Photos from National Cyber Security Services's post\n\n\nCVE-2019-18935:-- #RCE #exploit for a .NET #deserialization #vulnerability in #Telerik UI for ASP.NET AJAX.\n\nThis exploit leverages #encryption logic from RAU_crypto. The RAUCipher class within RAU_crypto.py depends on PyCryptodome, a drop-in replacement for the dead PyCrypto module. #PyCryptodome and #PyCrypto create problems when installed in the same environment, so the best way to satisfy this dependency is to install the module within a virtual environment, as shown above.\n\n#Download #Link:-\n\nhttps://github.com/noperator/CVE-2019-18935", "creation_timestamp": "2019-12-18T17:10:59.000000Z"}