CVE-2010-0361

Sun Java System Web Server 7.0 Update 7 - Stack-Based Buffer Overflow via WebDAV OPTIONS Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2010-0361. PoCs published by Metasploit, dmc, including Metasploit module exploits/multi/http/sun_jsws_dav_options.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow in Sun Java System Web Server prior to version 7 Update 8 via an overly long OPTIONS request to a WebDAV-enabled directory, allowing arbitrary code execution. It includes SEH-based exploitation for Windows targets and is confirmed to work on Windows XP SP3 without DEP.

Description

Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long URI in an HTTP OPTIONS request.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/16314

This Metasploit module exploits a buffer overflow in Sun Java System Web Server prior to version 7 Update 8 via an overly long OPTIONS request to a WebDAV-enabled directory, allowing arbitrary code execution. It includes SEH-based exploitation for Windows targets and is confirmed to work on Windows XP SP3 without DEP.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Sun Java System Web Server < 7 Update 8
No auth needed
Prerequisites: WebDAV-enabled directory on the target server · Network access to the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by dmc · c++remotewindows
https://www.exploit-db.com/exploits/14287

This exploit targets CVE-2010-0361 in Sun Java Web Server 7.0 u7, using a buffer overflow with ROP to bypass DEP and execute an egghunter to locate and trigger shellcode that adds a user.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Sun Java Web Server 7.0 update 7
No auth needed
Prerequisites: Network access to the target server · Sun Java Web Server 7.0 u7 running on Windows XP SP3
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC
by dmc · c++remotewindows
https://www.exploit-db.com/exploits/14194

This exploit targets a buffer overflow vulnerability in Sun Java Web Server 7.0 update 7 (CVE-2010-0361). It uses an egghunter technique to locate and execute shellcode that adds a user 'r00t' with password 'r00tr00t123'.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Sun Java Web Server 7.0 update 7
No auth needed
Prerequisites: Network access to the target server · Sun Java Web Server 7.0 update 7 running on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/sun_jsws_dav_options.rb

This Metasploit module exploits a buffer overflow in Sun Java System Web Server via an overly long OPTIONS request to a WebDAV-enabled directory, allowing arbitrary code execution. It includes SEH-based exploitation for Windows x86 targets and is confirmed to work on Windows XP SP3 without DEP.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Sun Java System Web Server prior to 7 Update 8
No auth needed
Prerequisites: WebDAV-enabled directory on the target server · Network access to the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Scores

EPSS 0.8854
EPSS Percentile 99.5%

Details

CWE
CWE-119
Status published
Products (1)
sun/java_system_web_server 7.0 update_7
Published Jan 20, 2010
Tracked Since Feb 18, 2026