PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 04:31:29 +00:00
Code Issues Projects Releases Wiki Activity

Minor description updates (and sometimes just text reformatting) for some of the 85 new scripts(!) since Nmap 6.01

Browse Source
This commit is contained in:
fyodor
2012-11-15 23:05:31 +00:00
parent ff0f33288b
commit f13353a610
30 changed files with 96 additions and 93 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
scripts/rmi-vuln-classloader.nse
View File

@@ -6,11 +6,11 @@ local string = require "string"
local vulns = require "vulns"
description = [[
Checks if rmiregistry allows class loading.
Tests whether Java rmiregistry allows class loading. The default
configuration of rmiregistry allows loading classes from remote URLs,
which can lead to remote code execution. The vendor (Oracle/Sun)
classifies this as a design feature.
The default configuration of rmiregistry allows loading classes from remote
URLs which can lead to remote code execution. This is considered as "by
design".
Based on original Metasploit module by mihi.