2021-12-10 13:17:32
Apache Log4j 的 0 day 远程代码执行,是经典的 JNDI注入攻击,通过加载远程类完成,下面两篇文章大家都学习一下吧其漏洞原理。
[1] Exploiting JNDI Injections in Java https://www.veracode.com/blog/research/exploiting-jndi-injections-java
[2] A Journey-From JNDI-LDAP Manipulation To Remote Code Execution https://www.blackhat.com/docs/us-16/materials/us-16-Munoz-A-Journey-From-JNDI-LDAP-Manipulation-To-RCE.pdf
1.5K views10:17