1. Remote Shell Access

Lets see if there is web server running on default port:

image.png

The web server is not running on default port.

Its time to fire nmap. Let’s go

nmap -sV -A 10.10.207.67 -T4 -oN nmap.txt

image.png

It is found that the web server is running on port 9099. Lets surf it.

image.png

Examining the response on burp, it is found that Mobile Mouse Server is running on back end.

image.png

By googling, I found that its 3.6.0.4 version is vulnerable to RCE.