Lucene search
K

10 matches found

Packet Storm
Packet Storm
added 2009/11/26 12:0 a.m.60 views

BEA Weblogic JSESSIONID Cookie Value Overflow

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'BEA Weblogic...

10CVSS0.3AI score0.61309EPSS
Exploits12
Saint
Saint
added 2009/04/10 12:0 a.m.39 views

Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow

Added: 04/10/2009 CVE: CVE-2008-5457 BID: 33177 Background Oracle WebLogic Server formerly BEA WebLogic Server is a Java web application platform. Problem A buffer overflow vulnerability in the WebLogic IIS connector allows remote attackers to execute arbitrary commands by sending a long, special...

10CVSS7.5AI score0.61309EPSS
Exploits12
Saint
Saint
added 2009/04/10 12:0 a.m.52 views

Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow

Added: 04/10/2009 CVE: CVE-2008-5457 BID: 33177 Background Oracle WebLogic Server formerly BEA WebLogic Server is a Java web application platform. Problem A buffer overflow vulnerability in the WebLogic IIS connector allows remote attackers to execute arbitrary commands by sending a long, special...

10CVSS7.5AI score0.61309EPSS
Exploits12
Saint
Saint
added 2009/04/10 12:0 a.m.64 views

Oracle WebLogic Server IIS Connector JSESSIONID buffer overflow

Added: 04/10/2009 CVE: CVE-2008-5457 BID: 33177 Background Oracle WebLogic Server formerly BEA WebLogic Server is a Java web application platform. Problem A buffer overflow vulnerability in the WebLogic IIS connector allows remote attackers to execute arbitrary commands by sending a long, special...

10CVSS7.6AI score0.61309EPSS
Exploits12
0day.today
0day.today
added 2009/04/01 12:0 a.m.60 views

Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit

Exploit for windows platform in category remote exploits ================================================================ Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit ================================================================ !/usr/bin/perl No point in keeping this priva...

7.1AI score0.61309EPSS
Exploits12
Exploit DB
Exploit DB
added 2009/04/01 12:0 a.m.55 views

Oracle WebLogic IIS connector JSESSIONID - Remote Overflow

!/usr/bin/perl No point in keeping this private anymore! ksOSe - 02/16/2009 - CVE-2008-5457 Tested on w2k sp4 and w2k3 R2 sp2 no NX cohelet framework-3.2 ./msfcli multi/handler PAYLOAD=windows/reflectivemeterpreter/reversetcp LHOST=10.10.10.1 LPORT=80 E Please wait while we load the module tree...

10CVSS7AI score0.61309EPSS
Exploits12
exploitpack
exploitpack
added 2009/04/01 12:0 a.m.55 views

Oracle WebLogic IIS connector JSESSIONID - Remote Overflow

Oracle WebLogic IIS connector JSESSIONID - Remote Overflow !/usr/bin/perl No point in keeping this private anymore! ksOSe - 02/16/2009 - CVE-2008-5457 Tested on w2k sp4 and w2k3 R2 sp2 no NX cohelet framework-3.2 ./msfcli multi/handler PAYLOAD=windows/reflectivemeterpreter/reversetcp...

10CVSS0.3AI score0.61309EPSS
Exploits12
Circl
Circl
added 2009/04/01 12:0 a.m.15 views

CVE-2008-5457

creationtimestamp| type| source ---|---|--- 2009-04-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8336 2010-07-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16762 2018-05-29 15:50:33+00:00| seen|...

10CVSS5.7AI score0.61309EPSS
Exploits12References3
Metasploit
Metasploit
added 2009/03/27 7:3 p.m.51 views

BEA WebLogic JSESSIONID Cookie Value Overflow

This module exploits a buffer overflow in BEA's WebLogic plugin. The vulnerable code is only accessible when clustering is configured. A request containing a long JSESSION cookie value can lead to arbitrary code execution. This module requires Metasploit: https://metasploit.com/download Current...

10CVSS7.9AI score0.61309EPSS
Exploits12
CVE
CVE
added 2009/01/14 2:0 a.m.75 views

CVE-2008-5457

CVE-2008-5457 describes a buffer overflow in BEA/Oracle WebLogic Server plug-ins (Apache/Sun/IIS) used to proxy requests. Public records show a JSESSIONID cookie overflow vector that requires clustering to be exploitable, enabling remote code execution. Exploitation details and PoCs exist (Metasp...

10CVSS6.2AI score0.61309EPSS
Exploits12References5Affected Software1
Rows per page
Query Builder