CVE-2016-9299 code execution vulnerability

From PwnWiki
This page is a translated version of the page CVE-2016-9299 代碼執行漏洞 and the translation is 100% complete.
Other languages:
Bahasa Indonesia • ‎Chinese • ‎English • ‎中文(中国大陆)‎ • ‎中文(简体)‎ • ‎粵語

Introduction

The remote processing module in Jenkins before 2.32 and LTS before 2.19.3 allows remote attackers to execute arbitrary code through elaborate serialization of Java objects, thereby triggering LDAP queries to third-party servers.

MSF

exploit/linux/misc/jenkins_ldap_deserialize
Retrieved from "https://pwnwiki.com/index.php?title=CVE-2016-9299_代碼執行漏洞/en&oldid=4532"