CVE-2010-0738

This exploit targets a vulnerability in JBoss AS to deploy a malicious JSP file via the BSHDeployer, which then establishes a reverse shell to the attacker's specified IP and port. It leverages the JMX console's HtmlAdaptor to execute arbitrary BeanShell scripts.

This Metasploit module exploits CVE-2010-0738 by uploading a malicious WAR file via the JBoss JMX Console's BSHDeployer. It leverages the createScriptDeployment method to deploy a JSP payload, achieving remote code execution on vulnerable JBoss servers.

This Metasploit module exploits CVE-2010-0738 by leveraging the JBoss DeploymentFileRepository to deploy a malicious WAR file containing a JSP payload, achieving remote code execution. It supports automatic platform detection and cleanup of deployed files.

This Perl script exploits a misconfigured JBoss JMX Console (CVE-2010-0738) by deploying a malicious WAR file via the DeploymentScanner's addURL method, enabling remote command execution. It includes functionality for installing, executing, and cleaning up the payload, as well as establishing a reverse shell.

This repository contains functional exploit scripts (e.sh and e2.sh) that automate the deployment of a JSP shell on vulnerable JBoss AS servers, leveraging CVE-2010-0738 (authentication bypass via HTTP VERB manipulation). The scripts support multi-platform targets (Linux, Windows, MacOS) and provide interactive shells via bind/reverse connections or Metasploit payloads.

This repository contains functional exploit scripts (e.sh and e2.sh) that leverage CVE-2010-0738, a JBoss authentication bypass vulnerability, to deploy a JSP shell and execute commands on target systems. The scripts support multiple platforms (Linux, Windows, MacOS) and payload types (bind/reverse shells, Meterpreter, VNC).

This Metasploit module scans JBoss instances for multiple vulnerabilities, including CVE-2010-0738, by checking for unauthenticated access to sensitive endpoints and testing for HTTP verb tampering to bypass authentication. It does not exploit the vulnerabilities but detects their presence.

This Metasploit module exploits a vulnerability in JBoss Application Server's DeploymentFileRepository to upload and deploy a malicious WAR file via a JSP stager. It supports both direct POST and chunked HEAD/GET methods for payload delivery.

This Metasploit module exploits CVE-2010-0738 in JBoss servers with exposed 'jmx-console' applications by uploading and deploying a malicious WAR file via the BSHDeployer's createScriptDeployment() method. It supports both direct deployment and a stager-based approach for payload delivery.

This Metasploit module scans SAP Internet Communication Manager (ICM) URLs for authentication bypass vulnerabilities and enumerates accessible paths. It checks for HTTP verb tampering (CVE-2010-0738) and logs valid URLs.

This Metasploit module exploits a vulnerability in JBoss Application Server (CVE-2010-0738) by deploying a malicious WAR file via the DeploymentFileRepository class. It achieves remote code execution by uploading a JSP stager and payload, then executing them on the target system.

This Metasploit module exploits CVE-2010-0738 in JBoss servers with exposed JMX consoles by uploading and deploying a malicious WAR archive via the MainDeployer functionality. It uses a temporary HTTP server to serve the payload and achieves remote code execution.

This Metasploit module exploits CVE-2010-0738 in JBoss servers with exposed 'jmx-console' applications by uploading and deploying a malicious WAR file via the BSHDeployer's createScriptDeployment() method, leading to remote code execution.