Exploitation Summary
EIP tracks 3 public exploits for CVE-2022-34169. PoCs published by flowerwind, Disnaming, bor8.
AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2022-34169, an integer truncation vulnerability in Apache Xalan-J. The tool automates the generation of payloads tailored to different JDK versions by analyzing bytecode and adjusting XSLT files to trigger the vulnerability.
Description
The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Users are recommended to update to version 2.7.3 or later. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.
Exploits (3)
This repository contains a functional exploit PoC for CVE-2022-34169, an integer truncation vulnerability in Apache Xalan-J. The tool automates the generation of payloads tailored to different JDK versions by analyzing bytecode and adjusting XSLT files to trigger the vulnerability.
This repository contains a functional exploit for CVE-2022-34169, an integer truncation vulnerability in Apache Xalan-J. The exploit leverages the vulnerability to achieve remote code execution (RCE) by manipulating the constant pool size in a crafted XSLT file.
This repository contains a scanner to check if CVE-2022-34169 is fixed on a machine by attempting to exploit a vulnerability in the Apache BCEL library where the constant pool size limit is not properly enforced. It does not execute arbitrary code but detects the presence of the fix by observing runtime behavior.
References (24)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N