Lucene search
JoaomatosfH1:235605HistoryJun 01, 2017 - 8:39 p.m.
U.S. Dept Of Defense: Remote Code Execution (RCE) in DoD Websites
2017-06-0120:39:34
joaomatosf
hackerone.com
27
0.1 Low
EPSS
Percentile
94.9%
A remote code execution (RCE) vulnerability was found on a Department of Defense (DoD) website which could have enabled an attacker to execute remote commands on the web server. @joaomatosf was able to demonstrate this vulnerability by developing a custom script that caused the webserver to execute a benign command. This was a very clever demonstration. Impressive work!
Thank you for supporting the DoD Vulnerability Disclosure Program!
Related
nessus
nessus
RHEL 5 / 6 : richfaces (RHSA-2013:1042)
2013-07-11 00:00:00
RHEL 5 : jboss-seam2 (RHSA-2013:1044)
2013-07-11 00:00:00
RHEL 5 / 6 : richfaces in JBoss EWP (RHSA-2013:1043)
2014-06-28 00:00:00
seebug
seebug
JBoss RichFaces θΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2013-2165)
2013-07-17 00:00:00
nvd
nvd
CVE-2013-2165
2013-07-23 11:03:11
CVE-2013-4521
2020-02-06 16:15:11
prion
prion
Deserialization of untrusted data
2013-07-23 11:03:00
Deserialization of untrusted data
2020-02-06 16:15:00
ubuntucve
ubuntucve
CVE-2013-2165
2013-07-23 00:00:00
github
github
Remote code execution due to insecure deserialization
2022-05-13 01:27:59
cvelist
cvelist
CVE-2013-2165
2013-07-22 19:00:00
CVE-2013-4521
2020-02-06 15:43:41
veracode
veracode
Remote Code Execution Through Deserialization Attack
2019-01-15 08:55:59
cve
cve
CVE-2013-2165
2013-07-23 11:03:11
CVE-2013-4521
2020-02-06 16:15:11
redhat
redhat
(RHSA-2013:1042) Critical: richfaces security update
2013-07-10 00:00:00
(RHSA-2013:1044) Critical: jboss-seam2 security update
2013-07-10 00:00:00
(RHSA-2013:1043) Critical: richfaces security update
2013-07-10 00:00:00
jvn
jvn
JVN#38787103: JBoss RichFaces vulnerable to remote code execution
2013-07-19 00:00:00
osv
osv
Remote code execution due to insecure deserialization
2022-05-13 01:27:59
