CVE-2020-2555 PoC — Oracle Utilities Framework 代码问题漏洞

Source

https://github.com/Maskhe/cve-2020-2555

Associated Vulnerability

Title:Oracle Utilities Framework 代码问题漏洞 (CVE-2020-2555)
Description:Oracle Utilities Framework是美国甲骨文（Oracle）公司的一款应用程序框架累计功能工具。该工具可以轻松查找在两次发行之间添加到应用程序的功能。 Oracle Utilities Framework中的Coherence 4.2.0.2.0, 4.2.0.3.0, 4.3.0.1.0-4.3.0.6.0, 4.4.0.0.0 和 4.4.0.2.0版本的Caching,CacheStore,Invocation组件存在安全漏洞。攻击者可利用该漏洞控制Oracle Coherenc

Description

CVE-2020-2555

File Snapshot


 [4.0K]  /data/pocs/611c9548a58387389d740af57567d5ca19ef32ca
├── [ 484]  CVE-2020-2555.iml
├── [4.0K]  lib
│   └── [7.0M]  coherence.jar
├── [4.0K]  out
│   └── [4.0K]  production
│       └── [4.0K]  CVE-2020-2555
│           └── [4.0K]  com
│               └── [4.0K]  axin
│                   └── [2.6K]  Main.class
├── [1.6K]  payload.ser
├── [ 126]  readme.md
└── [4.0K]  src
    └── [4.0K]  com
        └── [4.0K]  axin
            └── [1.9K]  Main.java

9 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!