Full title: ManageEngine Desktop Central Java Deserialization Exploit 
Category: remote exploits
Platform: multiple
This Metasploit module exploits a Java deserialization vulnerability in the getChartImage() method from the FileStorage class within ManageEngine Desktop Central versions below 10.0.474. Tested against 10.0.465 x64.

# 0day.today @ http://0day.today/