Parallels Remote Application Server (RAS) 18 IP Disclosure - Paper

2021-01-04
ID: 103838
CVE: None
Download vulnerable application: None
# Paper Title: Discovery of intranet IP address due to Parallels RAS Gateway Secure 18 login form submission
# Google Dork: “/RASHTML5Gateway/” & “/RASHTML5Gateway/#/login”
# Date: 25/12/2020
# Exploit Author: Amador Aparicio de la Fuente
# Vendor Homepage: https://www.parallels.com/blogs/ras/ras-quick-installation-guide/
# Software Link: https://download.parallels.com/ras/v15.5/docs/en_US/Parallels-RAS-v15-5-Administrators-Guide/39247.htm
# Version: Parallels Remote Application Server (RAS) 18
# CVE : CVE-2020-35710
1-4-2 (www01)