January 26, 2018
Popping Password-“Protected” JMX
The name gives it away, Java Management Extensions (JMX) is a potentially juicy target for attack. One of the ways that a JMX service may be exposed is using Java…
Posts filed under BaRMIe
October 22, 2017
Analysis of CVE-2017-12628
This morning I spotted a tweet mentioning an “Apache James 3.0.1 JMX Server Deserialization” vulnerability, CVE-2017-12628, which caught my eye because I wrote a generic JMX deserialization exploit which is…
October 13, 2017
Adobe ColdFusion Deserialization RCE (CVE-2017-11283, CVE-2017-11284)
During my research into the Java Remote Method Invocation (RMI) protocol, the most common RMI service that I came across was Adobe ColdFusion’s Flex integration service which is used to…
October 01, 2017
Java’s BaRMIe Back Door
A week ago I released a tool that I have been working on to enable security professionals to interact with applications that utilise Java’s Remote Method Invocation (RMI). This is…