CVE-2010-4417

Oracle Fusion Middleware <2.0.1.3 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2010-4417. PoCs published by Metasploit, 1c239c43f521145fa8385d64a9c32243, including Metasploit module exploits/windows/http/oracle_beehive_evaluation.

AI-analyzed exploit summary This Metasploit module exploits CVE-2010-4417 in Oracle BeeHive 2 by abusing the processEvaluation method in voice-servlet to upload a malicious JSP stager, which then writes and executes a payload, achieving remote code execution as SYSTEM.

Description

Unspecified vulnerability in the Services for Beehive component in Oracle Fusion Middleware 2.0.1.0, 2.0.1.1, 2.0.1.2, 2.0.1.2.1, and 2.0.1.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that voice-servlet/prompt-qa/Index.jspf does not properly handle null (%00) bytes in the evaluation parameter that is used in a filename, which allows attackers to create a file with an executable extension and execute arbitrary JSP code.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/38859

This Metasploit module exploits CVE-2010-4417 in Oracle BeeHive 2 by abusing the processEvaluation method in voice-servlet to upload a malicious JSP stager, which then writes and executes a payload, achieving remote code execution as SYSTEM.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Oracle BeeHive 2
No auth needed
Prerequisites: Network access to Oracle BeeHive's voice-servlet on port 7777
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by 1c239c43f521145fa8385d64a9c32243 · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/oracle_beehive_evaluation.rb

This Metasploit module exploits a vulnerability in Oracle BeeHive 2's voice-servlet processEvaluation() method to upload a malicious JSP stager and achieve remote code execution as SYSTEM. The exploit leverages directory traversal and file upload to deploy a payload executable.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Oracle BeeHive 2
No auth needed
Prerequisites: Network access to Oracle BeeHive's voice-servlet on port 7777 · Target must be running Oracle BeeHive 2
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0143
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/38859/
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-11-020/
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64772
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1024981
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42978
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45854

Scores

EPSS 0.7246
EPSS Percentile 98.8%

Details

Status published
Products (5)
oracle/beehive 2.0.1.0
oracle/beehive 2.0.1.1
oracle/beehive 2.0.1.2
oracle/beehive 2.0.1.2.1
oracle/beehive 2.0.1.3
Published Jan 19, 2011
Tracked Since Feb 18, 2026