Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-2375. PoCs published by Timothy D. Morgan.
AI-analyzed exploit summary The exploit demonstrates a HTTP request smuggling vulnerability in Oracle WebLogic Server by injecting malicious headers and secondary requests. It leverages improper handling of HTTP request parsing to bypass security controls.
Description
Package/Privilege: Plugins for Apache, Sun and IIS web servers Unspecified vulnerability in the WebLogic Server component in Oracle Fusion Middleware 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality and integrity, related to IIS.
Exploits (1)
The exploit demonstrates a HTTP request smuggling vulnerability in Oracle WebLogic Server by injecting malicious headers and secondary requests. It leverages improper handling of HTTP request parsing to bypass security controls.