CVE-2017-7504: JBoss 4.x JBossMQ JMS 反序列化漏洞

漏洞描述

PoC代码[已公开]

id: CVE-2017-7504

info:
  name: JBoss 4.x JBossMQ JMS 反序列化漏洞
  author: zan8in
  severity: critical
  description: |
    fofa: jbossmq
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2017-7504
    - http://wiki.peiqi.tech/wiki/webserver/JBoss/JBoss%204.x%20JBossMQ%20JMS%20%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E6%BC%8F%E6%B4%9E%20CVE-2017-7504.html
    - https://github.com/joaomatosf/jexboss

rules:
  r0:
    request:
      method: GET
      path: /jbossmq-httpil/HTTPServerILServlet
    expression: response.status == 200 && response.body.ibcontains(b'this is the jbossmq http-il')
expression: r0()

相关漏洞推荐

• CVE-2017-1000028: GlassFish LFI POC

  2025-09-01 | GlassFish
  GlassFish是一款强健的商业兼容应用服务器，达到产品级质量，可免费用于开发、部署和重新分发。开发者可以免费获得源代码，还可以对代码进行更改。GlassFish漏洞成因:java语义中会把&quo...

• CVE-2017-1000486: Primetek Primefaces 5.x - Remote Code Execution POC

  2025-09-01 | Primetek Primefaces
  Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution.

• CVE-2017-10271: WebLogic XMLDecoder 反序列化漏洞 CVE-2017-10271 POC

  2025-09-01 | WebLogic XMLDecoder
  Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent - WL...

• CVE-2017-11610: Supervisor RCE POC

  2025-09-01 | Supervisor
  Supervisor是一套进程控制系统，用于监视和控制类Unix系统上的进程。XML-RPC server是其中的一个XML-RPC服务器。 Supervisor中的XML-RPC服务器存在安全漏洞。...

• CVE-2017-12149: Java/Jboss Deserialization [RCE] POC

  2025-09-01 | Java Jboss
  In Jboss Application Server as shipped with Red Hat Enterprise Application Platform 5.2, it was foun...