关联漏洞
标题:Oracle WebLogic Server WLS Security组件安全漏洞 (CVE-2015-4852)Description:Oracle WebLogic Server是美国甲骨文(Oracle)公司的一款适用于云环境和传统环境的应用服务器,它提供了一个现代轻型开发平台,支持应用从开发到生产的整个生命周期管理,并简化了应用的部署和管理。WLS Security是其中的一个安全组件。 Oracle WebLogic Server的WLS Security组件中存在安全漏洞。远程攻击者可借助发送到TCP 7001端口的T3协议流量中特制的序列化Java对象,利用该漏洞执行任意命令。
Description
Python script to exploit CVE-2015-4852.
介绍
# serialator
Python script to exploit CVE-2015-4852.
## Description
During a recent engagement, I found that Nessus was now actively exploiting vulnerabilities for confirmation. When I checked the associated nasl script I found that the payload was generic enough to be used on a standalone script. Hence, I collected the payloads from all the nasl scripts that were part of the same RCE vulnerability (but for separate applications) and wrapped them with Python magic.
Next time you see a vulnreable application, use this script.
## Changelog:
* Update 29/02/2016
** Initial commit. Ready for testing.
## Author
Nikhil Sreekumar (@roo7break)
## Target applications
* Websphere
* JBoss
* OpenNMS
* Symantec Endpoint Protection Manager
## Included scripts
* serialator.py - Main exploit script
* ICMPListener.py - To setup a ICMP listener using scapy. Used alongside serialator.py for testing if target is vulnerable or not.
## Code details
* Python3
No additional packages required
## What next
* Incorporate ysoserial.jar or its payload generation
* Threaded exploiter - Weapon of mass exploitation :D
* Automated testing
文件快照
[4.0K] /data/pocs/77bc3e895f43217b9865730b4dd6d0d5345680e0
├── [1.7K] ICMPListener.py
├── [1.1K] README.md
└── [ 34K] serialator.py
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。