Java Applet JMX 0day Remote Code Execution Metasploit Demo

Share it with your friends Like

Thanks! Share it with your friends!

Close

Demonstration of Metasploit Framework with BackTrack 5 R3

=============================================

Author:

=======

Mzer0 : http://www.4xsecurityteam.com

Disclaimer:

Educational purposes only.

Java Applet JMX 0day Remote Code Execution Metasploit Demo

————————————————————

Timeline :
———-
Vulnerability discovered exploited in the wild by kafeine the 2013-01-10
Metasploit PoC provided the 2013-01-10

Affected version(s) :
———————
Oracle Java SE 7 Update 10

Tested on
———
Windows 8 Pro(x86) With Internet Explorer 10

Windows XP SP3 With Internet Explorer 8

Description :
————-
This module abuses the JMX classes from a Java Applet to run arbitrary Java code outside of the sandbox as exploited in the wild in January of 2013.
The vulnerability affects Java version 7u10 and earlier.

Comments

Write a comment

*