EXPLOITDB-EDB-24309

EXPLOITDB ruby VERIFIED WORKING POC

Exploit for CVE-2012-5076 - Java Applet AverageRangeStatisticImpl Remote Code Execution

AI Analysis

This Metasploit module exploits CVE-2012-5076, a vulnerability in Java 7u7 and earlier, by abusing the AverageRangeStatisticImpl class to execute arbitrary Java code outside the sandbox. It delivers a malicious JAR file via an HTML page with an embedded applet.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type remote

Platform java

Language ruby

Files 1

https://www.exploit-db.com/exploits/24309

Authors

Metasploit juan vazquez Unknown

Vulnerability

CVE-2012-5076

Java Applet AverageRangeStatisticImpl Remote Code Execution

CRITICAL KEV

CVSS 9.8