CVE-2013-1488
Oracle JDK and JRE - Remote Code Execution via Reflection and JDBC Driver Manager
Title source: llmExploitation Summary
EIP tracks 3 public exploits for CVE-2013-1488.
PoCs published by Metasploit, v-p-b, James Forshaw, juan vazquez, including Metasploit module exploits/multi/browser/java_jre17_driver_manager.
AI-analyzed exploit summary This Metasploit module exploits CVE-2013-1488, a vulnerability in Java's DriverManager class where the toString() method is called on user-supplied classes within a doPrivileged block, leading to remote code execution. It bypasses click-to-play on Internet Explorer via a crafted JNLP file and targets Java 7u17 and earlier.
Description
The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 6 and 7, allows remote attackers to execute arbitrary code via unspecified vectors involving reflection, Libraries, "improper toString calls," and the JDBC driver manager, as demonstrated by James Forshaw during a Pwn2Own competition at CanSecWest 2013.
Exploits (3)
This Metasploit module exploits CVE-2013-1488, a vulnerability in Java's DriverManager class where the toString() method is called on user-supplied classes within a doPrivileged block, leading to remote code execution. It bypasses click-to-play on Internet Explorer via a crafted JNLP file and targets Java 7u17 and earlier.
This is a working PoC exploit for CVE-2013-1488, a Java vulnerability that bypasses the security manager to execute arbitrary code. It leverages the ServiceLoader and ScriptEngine to achieve remote code execution by disabling the security manager and executing a command (calc.exe).
This Metasploit module exploits CVE-2013-1488 in Java 7u17 and earlier by abusing the java.sql.DriverManager class's toString() method in a doPrivileged block, achieving remote code execution via a crafted JNLP file and bypassing click-to-play on Internet Explorer.