daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: network/detection/java-rmi-detect.yaml by md

patch-1
MostInterestingBotInTheWorld 2023-02-06 10:10:15 -05:00
parent 98bc7cb833
commit f35bb05764
1 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
network/detection/java-rmi-detect.yaml
View File

@ -1,12 +1,16 @@
id: java-rmi-detect
info:
name: Java RMI Protocol Detection
name: Java Remote Method Invocation Protocol - Detect
author: F1tz
severity: info
tags: network,rmi,java
description: |
A security vulnerability in the Remote Method Invocation component of the Java Runtime Environment allows unauthenticated network attacks which can result in unauthorized operating system takeover including arbitrary code execution.
Java Remote Method Invocation protocol is susceptible to information disclosure. It allows for unauthenticated network attacks, which can result in unauthorized operating system takeover including arbitrary code execution.
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cvss-score: 0.0
cwe-id: CWE-200
network:
- inputs:
@ -21,3 +25,5 @@ network:
part: raw
regex:
- "^N\\x00\\x0e(\\d{1,3}\\.){3}\\d{1,3}\\x00\\x00"
# Enhanced by md on 2023/02/06