Nmap Development mailing list archives
Re: [NSE] jboss-vuln-cve2010-0738.nse
From: Patrik Karlsson <patrik () cqure net>
Date: Tue, 19 Jun 2012 22:51:04 +0200
On Tue, Jun 19, 2012 at 10:42 PM, David Fifield <david () bamsoftware com>wrote:
On Tue, Jun 19, 2012 at 10:34:18PM +0200, Patrik Karlsson wrote:What needs to change in http-method-tamper in order for it to be abletodetect this vulnerability. It seems to me that it already does, with no changes? It uses the same /jmx-console path as this exploit script. So is the only thing different about this new script, the addition of exploit code?It does detect the vulnerability for the jmx-console path and supports changing path with an argument. What I'm suggesting is to make it more general, as the vulnerabilitycouldbe present in other java app servers under different paths, as I believe this could be the result of unfortunate configuration. So addingspideringfunctionality to that script would allow it to be used for more genericuseand this new script would replace this particular check + add exploit capabilities.I tend to think that a targeted list of known susceptible paths will be more effective to test by default than a spider. Maybe have a spider as an option? I don't care as much about exploitation, and definitely not by default. David Fifield
I totally agree with you on not having the exploitation run by default :) //Patrik -- Patrik Karlsson http://www.cqure.net http://twitter.com/nevdull77 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] jboss-vuln-cve2010-0738.nse Tiago Natel de Moura (Jun 15)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Patrik Karlsson (Jun 16)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Tiago Natel de Moura (Jun 16)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Patrik Karlsson (Jun 16)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Patrik Karlsson (Jun 17)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Tiago Natel de Moura (Jun 16)
- Re: [NSE] jboss-vuln-cve2010-0738.nse David Fifield (Jun 19)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Patrik Karlsson (Jun 19)
- Re: [NSE] jboss-vuln-cve2010-0738.nse David Fifield (Jun 19)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Patrik Karlsson (Jun 19)
- Re: [NSE] jboss-vuln-cve2010-0738.nse Patrik Karlsson (Jun 16)