Name | wp_sjsws70u7_webdav |
CVE | CVE-2010-0361 |
Exploit Pack | White_Phosphorus |
Description | Sun Java System Web Server v7.0u7 Webdav Remote Overflow |
Notes | References: http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70u7-webdav.html http://www.exploit-db.com/exploits/14287/ CVE Name: CVE-2010-0361 VENDOR: Oracle Notes: Exploit requires a valid webdav enabled path. The exploit also needs to determine a valid padding length, which is achieved through a brute force approach. Once the webserver crashes, and the valid padding is found, the watchdog process will restart the webserver and the exploit will continute. Note that only the TCP Connect back will work against Windows 2008 targets. Repeatability: Multiple Date public: 2010-01-20 CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0361 CVSS: 10.0 |
Learn more about the CANVAS Exploit Pack here: White_Phosphorus |