-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
No security manager: RMI class loader disabled #40
Comments
It sounds like the classes required by the A decent way to investigate, assuming you have console access on this host, is to get the full classpath of that JVM/process: figure out which process is listening on that port (i.e. Unfortunately the above will only tell you what the entire collective process has loaded, and not what the specific child Do you know what Java version is being used? Have you tried the In the future I'd suggest asking questions like this in the Gitter chat. I'll probably close this shortly. -Chris |
Closing. Please follow-up in the GItter chat if there are further questions. |
I have also encountered this problem, want to know how to solve upstairs |
7u21 |
First of all, thanks for your work, it's awesome.
I'm testing an host who use the RMI protocol on port 22099. I could connect to it using the "jconsole" tool. However using ysoserial, I have the following stacktrace.
java -cp ysoserial-0.0.4-all.jar ysoserial.exploit.RMIRegistryExploit <ip> 22099 CommonsCollections1 "/sbin/ifconfig"
I have tried many different payloads to be sure and different CommonsCollections but the problem is still present.
The application server installed on the remote host is a Websphere. The RMI protocol uses serialized data, so I think it has to be vulnerable to apache commons vulnerabilities.
Thanks for your help, I will have access to this host until thursday.
The text was updated successfully, but these errors were encountered: