Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Request] CVE-2018-2628 - Oracle WebLogic exploit module #10058

Closed
syrius01 opened this issue May 18, 2018 · 5 comments
Closed

[Request] CVE-2018-2628 - Oracle WebLogic exploit module #10058

syrius01 opened this issue May 18, 2018 · 5 comments
Assignees
@jrobles-r7
Labels
module

Comments

@syrius01
Copy link

Hi,

I was wondering if it would be possible to make an exploit module in metasploit for CVE-2018-2628. It looks very interesting with a high CVS score.

Thanks!
@bcoles
Copy link
Contributor

bcoles commented May 18, 2018

@kkirsche

@bcoles bcoles added the module label May 19, 2018
@bcoles
Copy link
Contributor

bcoles commented Aug 9, 2018

Closed #10058 via #10436.

@bcoles bcoles closed this as completed Aug 9, 2018
@bcoles
Copy link
Contributor

bcoles commented Aug 9, 2018

Looks like @jrobles-r7 beat you to it. @kkirsche

@kkirsche
Copy link
Contributor

It's ok, I got distracted working towards the OSWP and OSCE, once I finish up the different certs, I should be able to focus on building fun stuff like this. Thanks for putting this together jrobles! Hopefully I can tackle some other exploits in the future.

@jrobles-r7
Copy link
Contributor

The implementation I did wasn't the best. Patching hex data probably wasn't a great way to go. Feel free to improve it! Also good luck with OSWP and OSCE @kkirsche .

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jrobles-r7 jrobles-r7

Labels
module
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@bcoles @kkirsche @syrius01 @jrobles-r7