module
Oracle Job Scheduler Named Pipe Command Execution
| Disclosed | Created |
|---|---|
| 2007-01-01 | 2018-05-30 |
Disclosed
2007-01-01
Created
2018-05-30
Description
This module exploits the Oracle Job Scheduler to execute arbitrary commands. The Job
Scheduler is implemented via the component extjob.exe which listens on a named pipe
called "orcljsex" and execute arbitrary commands received over this channel via
CreateProcess(). In order to connect to the Named Pipe remotely, SMB access is required.
Note that the Job Scheduler is disabled in default installations.
Scheduler is implemented via the component extjob.exe which listens on a named pipe
called "orcljsex" and execute arbitrary commands received over this channel via
CreateProcess(). In order to connect to the Named Pipe remotely, SMB access is required.
Note that the Job Scheduler is disabled in default installations.
Authors
David Litchfield
juan vazquez juan.vazquez@metasploit.com
sinn3r sinn3r@metasploit.com
juan vazquez juan.vazquez@metasploit.com
sinn3r sinn3r@metasploit.com
Platform
Windows
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.