14 matches found
Oracle Beehive prepareAudioToPlay() Function Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Beehive. Authentication is not required to exploit this vulnerability. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: Oracle Beehive suffers from a vulnerability tha...
Oracle BeeHive 2 voice-servlet prepareAudioToPlay() 任意文件上传漏洞
No description provided by source...
Oracle BeeHive 2 Code Execution
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Oracle BeeHive 2 voice-servlet processEvaluation Vulnerability", 'Description' = %q This module exploits a vulnerability found in...
Oracle BeeHive 2 Arbitrary File Upload Exploit
This Metasploit module exploits a vulnerability found in Oracle BeeHive. The prepareAudioToPlay method found in voice-servlet can be abused to write a malicious file onto the target machine, and gain remote arbitrary code execution under the context of SYSTEM. Authentication is not required to...
Oracle BeeHive 2 voice-servlet prepareAudioToPlay() arbitrary file upload vulnerability
Oracle Beehive is Oracle's software platform for enterprise messaging and writing services. An arbitrary file upload vulnerability exists in Oracle BeeHive 2 voice-servlet prepareAudioToPlay. Allows an attacker to submit a special file to execute arbitrary code...
Oracle BeeHive 2 Arbitrary File Upload
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Oracle BeeHive 2 voice-servlet prepareAudioToPlay Arbitrary File Upload", 'Description' = %q This module exploits a vulnerability...
Oracle BeeHive 2 - 'voice-servlet prepareAudioToPlay()' Arbitrary File Upload (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Oracle BeeHive 2 voice-servlet prepareAudioToPlay Arbitrary File Upload", 'Description' = %q This module exploits a vulnerability...
Oracle BeeHive 2 - 'voice-servlet processEvaluation()' Write File (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Oracle BeeHive 2 voice-servlet processEvaluation Vulnerability", 'Description' = %q This module exploits a vulnerability found in...
Oracle Beehive 'playAudioFile.jsp'远程代码执行漏洞
No description provided by source...
Oracle Beehive 'playAudioFile.jsp' Remote Code Execution Vulnerability
Oracle Beehive is a suite of unified communications and collaboration solutions from Oracle that provides a comprehensive set of integrated collaboration services, including conferencing, instant messaging, email, calendaring and team workspaces. A remote code execution vulnerability exists in...
Oracle BeeHive 2 voice-servlet prepareAudioToPlay() Arbitrary File Upload
This module exploits a vulnerability found in Oracle BeeHive. The prepareAudioToPlay method found in voice-servlet can be abused to write a malicious file onto the target machine, and gain remote arbitrary code execution under the context of SYSTEM. Authentication is not required to exploit this...
Oracle Beehive prepareAudioToPlay 文件创建漏洞
No description provided by source...
Oracle Beehive prepareAudioToPlay Arbitrary File Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Beehive. Authentication is not required to exploit this vulnerability. The specific flaw exists within the voice-servlet's playAudioFile.jsp. The method prepareAudioToPlay contains vulnerabl...
Oracle Beehive voice-servlet Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Beehive. Authentication is not required to exploit this vulnerability. The specific flaw exists within 'voice-servlet/prompt-qa/Index.jspf'. During the creation of a file used for storing an...