Hacker News new | ask | show | jobs
Remote code execution in Apache Tomcat 7.0 (nvd.nist.gov)
71 points by holograham 3195 days ago
4 comments
mdewinter 3195 days ago
Windows only, maybe the title can be changed.
link
bluetwo 3195 days ago
I stopped reading when I got to 'Windows' as well.
link
ryanlol 3195 days ago
It's 2017 and scanning /0 for PUT still reliably gets a bunch of shells...
link
exikyut 3195 days ago
OH, that's a _netmask_. It took me an entire day to figure that out. I thought /0 was a path :)
link
kevindqc 3195 days ago
Why does that return a shell?
link
dogma1138 3195 days ago
Web shell via put, still quite common.

Just as common as dorking for common webshells with no or default passwords.

If you need a VPS fast googling for c99 is faster than spinning up something on AWS ;)

link
exikyut 3195 days ago
Would like to learn more about this.

Hmm... looks like this dropped from 20k to 700 while I wasn't looking, which I guess is a very good thing (these are DVRs!). But FWIW, for "JAWS/1.0 -2017 -2016" on shodan, then "/shell?whoami" returns "root". :)

link
bastijn 3195 days ago
> "National Vulnerability Database The NVD is currently offline for scheduled maintenance.

> Please check back again shortly. We apologize for the inconvenience.

> Please direct any questions to nvd@nist.gov. Thank you."

Perfect timing for hn Frontpage. Alt link: https://tomcat.apache.org/security-7.html

link
thephyber 3195 days ago
Interestingly, I think NVD.nist.gov just changed their HTML-generating template since this HN URL was posted.
link
jlgaddis 3195 days ago
They did. The page looks much different now than it did earlier.
link
nwrk 3195 days ago
CC: Equifax
link