ATTACK [PTsecurity] Oracle Weblogic _async deserialization RCE Attempt (CVE-2019-2725)

SID: 10004779Rev: 33 views
Sourceptresearch/attackdetection
CreatedDecember 13, 2021
UpdatedDecember 13, 2021
Classificationattempted-admin
alert http any any -> any any (msg:"ATTACK [PTsecurity] Oracle Weblogic _async deserialization RCE Attempt (CVE-2019-2725)"; flow:established, to_server; content:"POST"; nocase; http_method; content:"oracle.toplink.internal.sessions.UnitOfWorkChangeSet"; pcre:"/(/wls-wsat/|/__async/)/I"; reference:cve, 2019-2725; reference:url, paper.seebug.org/910/; reference:url, github.com/ptresearch/AttackDetection; classtype:attempted-admin; sid:10004779; rev:3;)

References

cve2019-2725
urlpaper.seebug.org/910/
urlgithub.com/ptresearch/AttackDetection

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!