CVE-2015-4852

This Metasploit module exploits CVE-2015-4852, an unauthenticated deserialization vulnerability in Oracle WebLogic Server's T3 interface. It sends a crafted serialized object to execute arbitrary code on vulnerable hosts.

This exploit targets a Java deserialization vulnerability in Oracle WebLogic Server (CVE-2015-4852). It sends a crafted T3 protocol payload containing a serialized object that triggers remote code execution, specifically causing the target to send ICMP echo requests to the attacker's machine.

This exploit targets CVE-2015-4852, a deserialization vulnerability in Symantec Endpoint Protection Manager. It crafts a malicious Java serialized payload to achieve remote code execution (RCE) via HTTP/HTTPS requests.

This repository contains a Python-based exploit for CVE-2015-4852, which targets deserialization vulnerabilities in multiple applications (Websphere, JBoss, OpenNMS, Symantec Endpoint Protection Manager). The exploit includes a serialized payload for remote code execution (RCE) and an ICMP listener for vulnerability testing.

This repository contains proof-of-concept exploits for multiple WebLogic vulnerabilities, including CVE-2015-4852, which leverages Java deserialization via Apache Commons Collections to achieve remote code execution. The PoC generates a serialized payload that, when deserialized, executes arbitrary commands.

This repository contains a functional exploit for CVE-2015-4852, a deserialization vulnerability in Oracle WebLogic Server. The exploit uses a crafted T3 protocol payload to achieve remote code execution by leveraging the ysoserial tool to generate malicious serialized objects.

This repository contains a scanner for detecting Oracle WebLogic Server versions vulnerable to CVE-2015-4852, a deserialization vulnerability. It includes two scripts: one using Nmap for version detection and another using custom socket connections to identify vulnerable versions.

This PoC exploits CVE-2015-4852, a deserialization vulnerability in Oracle WebLogic Server, by sending a crafted T3 protocol request with a malicious serialized payload generated via ysoserial. It establishes a reverse shell to a specified listener.

This repository contains a functional exploit for CVE-2015-4852, a deserialization vulnerability in Oracle WebLogic Server. The exploit crafts a malicious T3 protocol payload to achieve remote code execution (RCE) by leveraging insecure deserialization.

This repository contains a functional Java-based exploit for CVE-2015-4852, leveraging T3 protocol deserialization to achieve remote code execution on WebLogic servers. The exploit constructs a malicious payload using Apache Commons Collections and sends it via T3 protocol to trigger the vulnerability.

This Metasploit module exploits a deserialization vulnerability in Oracle WebLogic Server (CVE-2015-4852) by sending a malicious serialized object over the T3 protocol to achieve remote code execution. The exploit supports multiple platforms (Unix, Windows, Solaris) and includes a T3 handshake for protocol negotiation.