what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Apache Log4j2 2.14.1 Remote Code Execution

Apache Log4j2 2.14.1 Remote Code Execution: Posted Dec 10, 2021; Authored by tangxiaofeng7 | Site github.com; Apache Log4j2 versions 2.14.1 and below proof of concept remote code execution exploit. JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled.; tags | exploit, remote, arbitrary, code execution, proof of concept; advisories | CVE-2021-44228; SHA-256 | c8d0355e439c74ae436d3c409fe4b1f7b1c6c2d6fb97d2375bbaa49de94f642b; Download | Favorite | View

Top Authors In Last 30 Days

Red Hat 134 files
Ubuntu 92 files
indoushka 29 files
Debian 27 files
Apple 22 files
Gentoo 20 files
nu11secur1ty 15 files
LiquidWorm 9 files
Google Security Research 6 files
jheysel-r7 4 files

File Tags

File Archives

Systems

AIX (428)
Apple (2,025)
BSD (375)
CentOS (57)
Cisco (1,925)
Debian (6,853)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,342)
HPUX (879)
iOS (357)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (46,873)
Mac OS X (687)
Mandriva (3,105)
NetBSD (256)
OpenBSD (486)
RedHat (13,930)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,960)
UNIX (9,320)
UnixWare (186)
Windows (6,590)
Other

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec