CVE-2010-0219

Related Files

Axis2 Upload Exec (via REST)

Posted Dec 1, 2010

Authored by Joshua D. Abraham | Site metasploit.com

This Metasploit module logs in to an Axis2 Web Admin Module instance using a specific user/pass and uploads and executes commands via deploying a malicious web service by using REST.

tags | exploit, web

advisories | CVE-2010-0219

SHA-256 | 51902f7e6af771ea7983f5300fc1027caf680459a29103bb46b1f0994f2206fc

Download | Favorite | View

Axis2 / SAP BusinessObjects dswsbobje Upload Exec

Posted Nov 16, 2010

Authored by Joshua D. Abraham | Site metasploit.com

This Metasploit module logins to an Axis2 Web Admin Module instance using a specific user/pass and uploads and executes commands via deploying a malicious web service by using SOAP.

tags | exploit, web

advisories | CVE-2010-0219

SHA-256 | d25079aca4be2ff7c1b9c1e7d10524631a0690cd4f3947fe48034950306d88a5

Download | Favorite | View

Rapid7 Security Advisory 37

Posted Oct 15, 2010

Authored by H D Moore, Rapid7, Joshua D. Abraham, Will Vandevanter | Site rapid7.com

Rapid7 Security Advisory - The SAP BusinessObjects product contains a module (dswsbobje.war) which deploys Axis2 with an administrator account which is configured with a static password. As a result, anyone with access to the Axis2 port can gain full access to the machine via arbitrary remote code execution. This requires the attacker to upload a malicious web service and to restart the instance of Tomcat. This issue may apply to other products and vendors that embed the Axis2 component. The username is "admin" and the password is "axis2", this is also the default for standalone Axis2 installations.

tags | exploit, remote, web, arbitrary, code execution

advisories | CVE-2010-0219

SHA-256 | 226db62066f2c56c87818ee78e4d00164861cd9e8d34858c75dc772b294bbff8

Download | Favorite | View