Subscribe via feed.

Oracle Weblogic Server Deserialization RMI UnicastRef Remote Code Execution

Posted by deepcore on April 3, 2019 – 12:00 am

An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (sun.rmi.server.UnicastRef) to the interface to execute code on vulnerable hosts.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »