CVE-2009-1978

Oracle Secure Backup 10.2.0.3 - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1978.

AI-analyzed exploit summary This script exploits two vulnerabilities in Oracle Secure Backup Administration Server: an authentication bypass (CVE-2009-1977) and a command injection (CVE-2009-1978) to achieve remote command execution. It retrieves a valid session token and then injects commands via a crafted URL parameter, providing a non-interactive shell.

Description

Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the July 2009 Oracle CPU. Oracle has not commented on claims from an independent researcher that this vulnerability allows remote authenticated users to execute arbitrary code with SYSTEM privileges via vectors involving property_box.php.

Exploits (1)

exploitdb WORKING POC

shellremotewindows

https://www.exploit-db.com/exploits/9652

View Code ZIP pw:eip

This script exploits two vulnerabilities in Oracle Secure Backup Administration Server: an authentication bypass (CVE-2009-1977) and a command injection (CVE-2009-1978) to achieve remote command execution. It retrieves a valid session token and then injects commands via a crafted URL parameter, providing a non-interactive shell.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Oracle Secure Backup Server 10.3.0.1.0_win32_release

No auth needed

Prerequisites: Target IP address · curl installed on the attacker's machine · Network access to the target server

MITRE ATT&CK