CVE-2003-0845

JBoss 3.0.8 and 3.2.1 - SQL Injection via HSQLDB Component

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0845. PoCs published by Marc Schoenefeld.

AI-analyzed exploit summary This exploit leverages a command-injection vulnerability in JBoss via the HSQLDB component. It uses SQL aliases to execute arbitrary commands (e.g., `cmd.exe`) by manipulating Java system properties and invoking external processes.

Description

Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to (1) TCP port 1701 in JBoss 3.2.1, and (2) port 1476 in JBoss 3.0.8.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Marc Schoenefeld · textremotemultiple

https://www.exploit-db.com/exploits/23221

View Code ZIP pw:eip

This exploit leverages a command-injection vulnerability in JBoss via the HSQLDB component. It uses SQL aliases to execute arbitrary commands (e.g., `cmd.exe`) by manipulating Java system properties and invoking external processes.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: JBoss 3.2.1/3.0.8 with HSQLDB

No auth needed

Prerequisites: Network access to HSQLDB port (1701/TCP or 1476/TCP) · Java 1.4.x environment

MITRE ATT&CK