CVE-2016-9299 代碼執行漏洞

From PwnWiki

Revision as of 15:55, 9 March 2021 by Pwnwiki (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Other languages:

Bahasa Indonesia • ‎Chinese • ‎English • ‎中文（中国大陆）‎ • ‎中文（简体）‎ • ‎粵語

簡介

2.32之前的Jenkins和2.19.3之前的LTS中的遠程處理模塊允許遠程攻擊者通過精心製作的序列化Java對象執行任意代碼，從而觸發對第三方服務器的LDAP查詢。

MSF

exploit/linux/misc/jenkins_ldap_deserialize

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2016-9299_代碼執行漏洞&oldid=254"