With the credentials, we can exploit authenticated WebDav file upload to secure an initial access. Misusing XEE to read a configuration file, which bears credentials of webdav service. Remote enumeration discloses a XML External Entity (XEE) vulnerability of ladon running on a higher port of a web application.
...
OutOfMemoryError (unable to create new native thread) OutOfMemoryError (Requested array size exceeds VM limit) Delay due to unnecessary object creation Delay of creating string due to +(plus) operator
Run the command: $ java -jar easybuggy.jarStart up -> Infinite Loop -> LDAP Injection -> UnsatisfiedLinkError -> BufferOverflowException -> Deadlock -> Memory Leak -> JVM Crash (Shut down)This application can cause severe memory leaks or increase CPU usage rate and make your computer unstable. Go to the latest release page and download easybuggy.jar OutOfMemoryError (Direct buffer memory)
0 kommentar(er)
