CVE-2007-2699

BEA WebLogic Express/WebLogic Server 9.0-9.1 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2699. PoCs published by Steven Seeley, sinn3r, including Metasploit module exploits/windows/http/oats_weblogic_console.

AI-analyzed exploit summary This Metasploit module exploits a feature in Oracle WebLogic Server's Administration Console to deploy a malicious WAR file, achieving remote code execution. It leverages default credentials ('oats') for authentication and targets versions 12 or prior.

Description

The Administration Console in BEA WebLogic Express and WebLogic Server 9.0 and 9.1 does not properly enforce certain Domain Security Policies, which allows remote administrative users in the Deployer role to upload arbitrary files.

Exploits (1)

metasploit WORKING POC EXCELLENT

by Steven Seeley, sinn3r · rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/oats_weblogic_console.rb

View Code ZIP pw:eip

This Metasploit module exploits a feature in Oracle WebLogic Server's Administration Console to deploy a malicious WAR file, achieving remote code execution. It leverages default credentials ('oats') for authentication and targets versions 12 or prior.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Oracle WebLogic Server Administration Console 12 or prior

Auth required

Prerequisites: Network access to WebLogic Administration Console · Valid credentials (default 'oats' account)

MITRE ATT&CK