Full title: Oracle Weblogic Server Deserialization MarshalledObject Remote Code Execution Exploit 
Category: remote exploits
Platform: multiple
An unauthenticated attacker with network access to the Oracle Weblogic Server T3 interface can send a serialized object (weblogic.corba.utils.MarshalledObject) to the interface to execute code on vulnerable hosts.

# 0day.today @ http://0day.today/