Oracle Weblogic Server deserialization remote command execution exploit with patch bypass.
837c2f0617dd4b3f41f05a46a57a7e73ab7bc936ea31caa66a3b2934f79ee87cOracle WebLogic Server suffers from a local file inclusion vulnerability. Versions affected include 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0.
201c7442b864057fc71cc40d8602d6406f7fb6b3d115cde62d9c902068b08cfaOracle WebLogic Server 12.2.1.0 unauthenticated remote code execution exploit.
687e6a9d4fa1a46d990ef0f9fd8058a57c920d074f7a469545c279d6cb6f40abOracle WebLogic Server version 14.1.1.0 authenticated remote code execution exploit.
5de2e01ef80f612e9e69dbbead3b803428556dfb968be312ac48a6f5baf5b1e3Oracle WebLogic Server versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0 remote code execution exploit.
269998241a3473e130c36a33e8a41a91634ae92b38578c7c0fcfcf81171abc62Oracle WebLogic Server version 12.2.1.4.0 suffers from a remote code execution vulnerability.
9c56d605f71c80b479342376983e587c7ead9e49558f09b1b0984cf4969069dfOracle Weblogic version 10.3.6.0.0 remote command execution exploit.
4ad6e21c3fcb977e0023dfe9a1803b6c73be6d865d1688b219b016e75cb5608dAn unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a malicious SOAP request to the interface WLS AsyncResponseService to execute code on the vulnerable host.
7b103f91354f91a5368f07e6173b43d3e6d6c1255ccab672a82be3ddeaa8b9f2An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (sun.rmi.server.UnicastRef) to the interface to execute code on vulnerable hosts.
7689bd250f236540a89962c75e10662698d550e3295c7ffa517147b01022d81fAn unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (weblogic.corba.utils.MarshalledObject) to the interface to execute code on vulnerable hosts.
34887ed78f437dc71b9a27e469d90d560f20f0a52702a9df664219aa2a18b0f2This Metasploit module demonstrates that an unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (weblogic.jms.common.StreamMessag eImpl) to the interface to execute code on vulnerable hosts.
e9fa1048c7115283a85c77ab6fc28657f1c314f5367d3be58cd22dda512105d6An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object to the interface to execute code on vulnerable hosts.
3b706831a95e7ec9767cb60c343331abe8d92f1382ece3a3f50c5943e25d0275Two vulnerabilities were discovered within the Oracle WebLogic SAML service provider authentication mechanism. By inserting an XML comment into the SAML NameID tag, an attacker can coerce the SAML service provider to log in as another user. Additionally, WebLogic does not require signed SAML assertions in the default configuration. By omitting the signature portions from a SAML assertion, an attacker can craft an arbitrary SAML assertion and bypass the authentication mechanism.
df883ee3bce61fab76fb737953e569c776dce1d344a6385409a6926c2d6cf3efOracle WebLogic version 12.1.2.0 RMI registry UnicastRef object java deserialization remote code execution exploit.
987b367f18145d131cb109d237d5319193f94dea35e470a2462b8e9d1fd9c000The Oracle WebLogic WLS WSAT component is vulnerable to an XML deserialization remote code execution vulnerability. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0.
4ec37da27b4c2bc377cee005689b9de7e837a03542a60ce1130758c857cb9228This exploit tests the target Oracle WebLogic Server for Java Deserialization remote code execution vulnerability. The ysoserial payload causes the target to send Ping requests to the attacking machine. You can monitor ICMP ECHO requests on your attacking machine using TCPDump to know if the exploit was successful. Feel free to modify the payload (chunk2) with that of your choice. Do not worry about modifying the payload length each time you change the payload as this script will do it for you on the fly. Versions affected include 10.3.6.0, 12.1.2.0, 12.1.3.0 and 12.2.1.0.
ac556f1550022f3147ba71eb384d81217f8f01394258077e4047ca66a5f06464Secunia Security Advisory - A vulnerability has been reported in Oracle WebLogic Server and Oracle Event Processing, which can be exploited by malicious people to bypass certain security restrictions.
3a12e55761bfab5077620d2ebe0c7b23d5b241996c523ed57d046c3a0d09c866Secunia Security Advisory - Two vulnerabilities have been reported in Oracle WebLogic Server, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
c4a12073ea5eb9090de20337ac16e4551a4c46429ba036252bc8901a113c5436Secunia Security Advisory - Multiple vulnerabilities have been reported in Oracle WebLogic Server, which can be exploited by malicious, local users to perform certain actions with escalated privileges and by malicious people to disclose potentially sensitive information.
b768712c52a4bc8f7c9807dc6fe19147549d382ac94b85a911bad8ecb200b0f1Secunia Security Advisory - A vulnerability has been reported in Oracle WebLogic Portal, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service).
054c6e3a32b8a5c35d574f230822ac41c3ea7afd17065fcad100d101ca70da16Oracle WebLogic server versions 9.0, 9.1, 9.2.4, 10.0.2, 10.3.2, and 10.3.3 suffers from a session fixation vulnerability.
326aa57bf65123e286554a7d1b6fea93e196390c46e10fb0b13ffcb6e4a7a1efSecunia Security Advisory - Some vulnerabilities have been reported in Oracle WebLogic Server, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, and compromise a vulnerable system.
e6f8634ff898dbaa81b00c0603368ca83451d303d7c434f927b4c87a653d5cbaSecunia Security Advisory - A vulnerability has been reported in Oracle WebLogic Server, which can be exploited by malicious people to bypass certain security restrictions and compromise a vulnerable system.
57caa0047cc4ed21d55d03b007d26f6ebbad6c59d72bd28870d198e46b95804cSecunia Security Advisory - Two vulnerabilities have been reported in Oracle WebLogic Server, which can be exploited by malicious people to manipulate certain data.
f6db3519bf6b10ba60fd64718c2452d4f4cbcac71007174e34bac478a95db859Secunia Security Advisory - A vulnerability has been reported in Oracle WebLogic Server, which can be exploited by malicious people to compromise a vulnerable system.
4083eb6e22c8c3a7a37db410dca7027b6abd1b97d5bb16e87ff9f2c2cab0d6e8Secunia Security Advisory - A vulnerability has been reported in Oracle WebLogic Server, which can be exploited by malicious people to bypass certain security restrictions.
551987843db2a533b1c3fe8db9e6f81087bd1273c44526ed7f971d57371d0363
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed