CVE-2020-2551: Unauthenticated RCE In Oracle WebLogic

CVE-2020-2551: Unauthenticated RCE In Oracle WebLogic
February 4, 2020 3 mins

CVE-2020-2551: Unauthenticated RCE In Oracle WebLogic

CVE-2020-2551: Unauthenticated RCE In Oracle WebLogic

Unauthenticated Remote Code Execution in IIOP protocol via Malicious JNDI Lookup.

Aon’s Cyber Solutions recently discovered a security vulnerability in WebLogic Server version v12.2.1.4 and below allowing for unauthenticated remote code execution. The vulnerability is present in the IIOP service that runs by default and listens on an external interface. This issue was discovered by Stefano Ciccone.

Aon would like to thank Oracle for working with us as part of our coordinated disclosure process.

Timeline:

09/26/19 – Initial disclosure to [email protected]
10/21/19 – Issue confirmed and reproduced by Oracle
01/14/20 – Oracle patches released
02/04/20 – Aon advisory released

Vendor Advisory:

https://www.oracle.com/security-alerts/cpujan2020.html

CVE-2020-2551: Unauthenticated Remote Code Execution in IIOP protocol via Malicious JNDI Lookup

Using the WebLogic libraries, it is possible to create a payload that causes a remote IIOP server to initialize a Java object that invokes a JNDI lookup to an attacker-controlled server, leading to code execution.

Exploitation of malicious JNDI lookups can be achieved in several ways. References are provided below, including a tool that can be used to respond to JNDI lookups from vulnerable applications.

About Cyber Solutions:

Cyber security services are offered by Stroz Friedberg Inc., its subsidiaries and affiliates. Stroz Friedberg is part of Aon’s Cyber Solutions which offers holistic cyber risk management, unsurpassed investigative skills, and proprietary technologies to help clients uncover and quantify cyber risks, protect critical assets, and recover from cyber incidents.

General Disclaimer

This material has been prepared for informational purposes only and should not be relied on for any other purpose. You should consult with your own professional advisors or IT specialists before implementing any recommendation, following any of the steps or guidance provided herein. Although we endeavor to provide accurate and timely information and use sources that we consider reliable, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future.

Terms of Use

The contents herein may not be reproduced, reused, reprinted or redistributed without the expressed written consent of Aon, unless otherwise authorized by Aon. To use information contained herein, please write to our team.

More Like This

View All
Subscribe CTA Banner