search

GrrrDog / Java-Deserialization-Cheat-Sheet

The cheat sheet about Java Deserialization vulnerabilities
3.01k stars 594 forks source link

CVE summary for java deserialiazation #4

Closed mudongliang closed 8 years ago

mudongliang commented 8 years ago

I have read through all the README. There are two parts where contain CVEs for java deserialization - Exploits and Vulnerable apps. Why do you separate them info two parts? I think we can combine them into one part which is based on CVE, or vulnerable app name. It may be a long list with more 30 items, but it is more clear. Additionally, how do you collect all those vulnerabilities in the README? It is a heavy but meaningful work. I think it's best if we can collect all the CVEs about java deserialization.

GrrrDog commented 8 years ago

1) the primary goal of this cheat sheet is to help pentesters. So Exploits is a list of vulnerable apps with enough details for exploitation or with public sploits. Vulnerable apps is just a list of apps with javadeser vulns, but without all necessary info for exploitation. 2) A part of this list I've got from @frohoff Another part I've got from monitoring Twitter and gitter. From time to time I use search at mitre.org. I'd like to collect all the CVEs, but there are some problems: not all vendors get CVEs for vulns in thier products; some vendors give only a list of vulnerable apps.

I like javadeser topic. It helps me much during pentests. So it's not hard for me :) However, I'd like to work together. Mb we could discuss some details in faster way in Twitter?

mudongliang commented 8 years ago

OK, no problem. On Jul 7, 2016 7:45 AM, "GrrrDog" notifications@github.com wrote:

1) the primary goal of this cheat sheet is to help pentesters. So Exploits is a list of vulnerable apps with enough details for exploitation or with public sploits. Vulnerable apps is just a list of apps with javadeser vulns, but without all necessary info for exploitation. 2) A part of this list I've got from @frohoff https://github.com/frohoff Another part I've got from monitoring Twitter and gitter. From time to time I use search at mitre.org. I'd like to collect all the CVEs, but there are some problems: not all vendors get CVEs for vulns in thier products; some vendors give only a list of vulnerable apps.

I like javadeser topic. It helps me much during pentests. So it's not hard for me :) However, I'd like to work together. Mb we could discuss some details in faster way in Twitter?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet/issues/4#issuecomment-231055418, or mute the thread https://github.com/notifications/unsubscribe/AF7UzQzpS98cah9rFidtnba0a7gj_lPKks5qTObpgaJpZM4JGkO5 .

mudongliang commented 8 years ago

Another new vulnerability about jenkins is CVE-2016-0788. I saw it in the gitter and I have tested it in my local workspace. It is exploited.