vendor:
N/A
by:
Kingcope
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
2011
The Full Daytona Package — By Kingcope
The Full Daytona Package is a collection of three JBoss Application Server remote exploits with authentication bypass, ported from Metasploit and beefed up with two scanners: PNSCAN with SSL support and SYNSCAN modded. The remote exploits are best used with daytona_bsh.pl, while the SSL support is provided for the remote exploits with daytona_bsh_ssl.pl, daytona_deployfile_ssl.pl, and daytona_maindeploy_ssl.pl. The SYNSCAN is modded for scanning JBoss (X-Powered-By TAG) on port 8080 only, while the original Parallel Network Scanner (PNSCAN) is modded to support SSL. Usage: ./pnscan -r JBoss -w “HEAD / HTTP/1.0” 10.10.0.0/16 443.
Mitigation:
Ensure that authentication is properly implemented and enforced for all JBoss Application Server components.
