|
@chybeta | |||||
|
CVE-2020-2551 WebLogic RCE via IIOP protocol. pic.twitter.com/WyKVkQASiL
|
||||||
|
||||||
|
MCKSys Argentina
@MCKSysAr
|
16. sij |
|
Are you loading a remote class in those 5 lines or are you creating something else? I can reproduce the bug with a class I define, but maybe there's a simpler way?
|
||
|
|
||
|
MCKSys Argentina
@MCKSysAr
|
24. sij |
|
The exploit depends on the installed JDK version? Because I can trigger RCE in WL 12.2.1.4.0 if jdk <8u182 (or in other versions where JDK is not patched for LDAP)
|
||
|
|
||
|
Lt.sushmitaZAHARA _Maj.JoeCalcitraiF1RogerMoCKBá
@sushmitakumar7
|
16. sij |
|
2531II
|
||
|
|
||
|
shijie
@codershijie
|
20. sij |
|
你好能够吧POC给我吗,我们做安全测试用。
|
||
|
|
||