Kaseya, a provider of unified IT management and security software for managed service providers (MSPs) and small to midsize business (SMBs), today released its 2024 MSP Benchmark Report, which surveyed close to 1,000 MSPs from the Americas, EMEA (Europe, Middle East and Africa) and APAC (Asia Pacific) regions and includes responses from both IT professionals […]

The post Cybersecurity top revenue driver for bulk of MSPs, Kaseya report finds first appeared on ITBusiness.ca.

This Metasploit module exploits an arbitrary file upload vulnerability found in Kaseya versions below 6.3.0.2. A malicious user can upload an ASP file to an arbitrary directory without previous authentication, leading to arbitrary code execution with IUSR privileges.

This Metasploit module exploits an arbitrary file upload vulnerability found in Kaseya VSA versions between 7 and 9.1. A malicious unauthenticated user can upload an ASP file to an arbitrary directory leading to arbitrary code execution with IUSR privileges. This Metasploit module has been tested with Kaseya v7.0.0.17, v8.0.0.10 and v9.0.0.3.