CVE-2010-0738

This repository contains functional exploit scripts (e.sh and e2.sh) that automate the deployment of a JSP shell on vulnerable JBoss AS servers, leveraging CVE-2010-0738 (authentication bypass via HTTP VERB manipulation). The scripts support multi-platform targets (Linux, Windows, MacOS) and provide interactive shells via bind/reverse connections or Metasploit payloads.

This repository contains functional exploit scripts (e.sh and e2.sh) that leverage CVE-2010-0738, a JBoss authentication bypass vulnerability, to deploy a JSP shell and execute commands on target systems. The scripts support multiple platforms (Linux, Windows, MacOS) and payload types (bind/reverse shells, Meterpreter, VNC).

This Metasploit module exploits CVE-2010-0738 in JBoss servers with exposed 'jmx-console' applications by uploading and deploying a malicious WAR file via the BSHDeployer's createScriptDeployment() method, leading to remote code execution.

This Metasploit module exploits CVE-2010-0738 in JBoss servers with exposed JMX consoles by uploading and deploying a malicious WAR archive via the MainDeployer functionality. It uses a temporary HTTP server to serve the payload and achieves remote code execution.

This Metasploit module scans SAP Internet Communication Manager (ICM) URLs for authentication bypass vulnerabilities and enumerates accessible paths. It checks for HTTP verb tampering (CVE-2010-0738) and logs valid URLs.

This Metasploit module exploits CVE-2010-0738 by leveraging the JBoss DeploymentFileRepository to deploy a malicious WAR file containing a JSP payload, achieving remote code execution. It supports automatic platform detection and cleanup of deployed files.

This exploit targets a vulnerability in JBoss AS to deploy a malicious JSP file via the BSHDeployer, which then establishes a reverse shell to the attacker's specified IP and port. It leverages the JMX console's HtmlAdaptor to execute arbitrary BeanShell scripts.

This Perl script exploits a misconfigured JBoss JMX Console (CVE-2010-0738) by deploying a malicious WAR file via the DeploymentScanner's addURL method, enabling remote command execution. It includes functionality for installing, executing, and cleaning up the payload, as well as establishing a reverse shell.

This Metasploit module exploits a vulnerability in JBoss Application Server's DeploymentFileRepository to upload and deploy a malicious WAR file via a JSP stager. It supports both direct POST and chunked HEAD/GET methods for payload delivery.

This Metasploit module exploits CVE-2010-0738 by uploading a malicious WAR file via the JBoss JMX Console's BSHDeployer. It leverages the createScriptDeployment method to deploy a JSP payload, achieving remote code execution on vulnerable JBoss servers.

This Metasploit module exploits CVE-2010-0738 in JBoss servers with exposed 'jmx-console' applications by uploading and deploying a malicious WAR file via the BSHDeployer's createScriptDeployment() method. It supports both direct deployment and a stager-based approach for payload delivery.

This Metasploit module exploits a vulnerability in JBoss Application Server (CVE-2010-0738) by deploying a malicious WAR file via the DeploymentFileRepository class. It achieves remote code execution by uploading a JSP stager and payload, then executing them on the target system.