CVE-2012-1723 PoC — Oracle Java SE JRE组件Hotspot子组件未明安全漏洞

Source

https://github.com/EthanNJC/CVE-2012-1723

Associated Vulnerability

Title:Oracle Java SE JRE组件Hotspot子组件未明安全漏洞 (CVE-2012-1723)
Description:Oracle Java SE是美国甲骨文（Oracle）公司的一套标准版Java平台，用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。 Oracle Java SE 7 update 4和早期版本，6 update 32和早期版本，5 update 35和早期版本，1.4.2_37和早期版本中的Java Runtime Environment（JRE）组件中存在未明漏洞。远程攻击者可利用该漏洞通过相关Hotspot未明向量影响机密性，完整性和可用性。

Description

Proof of concept exploit for CVE-2012-1723

File Snapshot


 [4.0K]  /data/pocs/78f3148826736b31062bb9aa83407d65be619f52
├── [ 188]  DriveBy.html
├── [4.0K]  me
│   └── [4.0K]  ethaniel
│       └── [4.0K]  cve20122723
│           ├── [1.9K]  Confuser.java
│           ├── [ 513]  DriveBy.java
│           ├── [1.1K]  EvilClassLoader.java
│           └── [ 596]  Payload.java
└── [ 194]  README.MD

3 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!