description modified
parent
e7f5bf132c
commit
bedf010676
|
@ -22,14 +22,12 @@ class Metasploit3 < Msf::Exploit::Remote
|
||||||
Weblogic Apache plugin.
|
Weblogic Apache plugin.
|
||||||
|
|
||||||
The connector fails to properly handle specially crafted HTTP POST
|
The connector fails to properly handle specially crafted HTTP POST
|
||||||
requests resulting in a buffer overflow due to the insecure usage
|
requests, resulting a buffer overflow due to the insecure usage
|
||||||
of sprintf.
|
of sprintf. Currently, this module works over Windows systems without DEP,
|
||||||
|
|
||||||
The Weblogic Apache plugin version is fingerprinted with a POST
|
|
||||||
request containing a specially crafted Transfer-Encoding header.
|
|
||||||
|
|
||||||
At this moment this module works over Windows systems without DEP
|
|
||||||
and has been tested with Windows 2000 / XP.
|
and has been tested with Windows 2000 / XP.
|
||||||
|
|
||||||
|
In addition, the Weblogic Apache plugin version is fingerprinted with a POST
|
||||||
|
request containing a specially crafted Transfer-Encoding header.
|
||||||
},
|
},
|
||||||
'Author' =>
|
'Author' =>
|
||||||
[
|
[
|
||||||
|
|
Loading…
Reference in New Issue