CVE-2017-5638 PoC — Apache Struts 2 输入验证错误漏洞

Source

https://github.com/ludy-dev/XworkStruts-RCE

Associated Vulnerability

Title:Apache Struts 2 输入验证错误漏洞 (CVE-2017-5638)
Description:The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or Content-Length HTTP header, as exploited in the wild in March 2017 with a Content-Type header containing a #cmd= string.

Description

(CVE-2017-5638) XworkStruts RCE Vuln test script

Readme

# XworkStruts-RCE
(CVE-2017-5638) XworkStruts RCE Vuln test script

The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or Content-Length HTTP header, as exploited in the wild in March 2017 with a Content-Type header containing a #cmd= string.

Usage>

    python XworkStruts RCE (CVE-2017-5638).py <dst_ip> <dst_port> (user defined port)
    
    python XworkStruts RCE (CVE-2017-5638).py <dst_ip> (default : 80/tcp)

[updated!]
Script was editted for Python3 

Just using Vuln Test for your System

File Snapshot


 [4.0K]  /data/pocs/f25123e2d40483122741d790bbc9fa76c4e425bc
├── [ 742]  README.md
└── [1.6K]  XworkStruts RCE (CVE-2017-5638).py

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!