GitHub - longofo/Apache-Dubbo-Hessian2-CVE-2021-43297: Apache Dubbo Hessian2 CVE-2021-43297 demo

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
dubbo-client		dubbo-client
dubbo-server		dubbo-server
images		images
README.md		README.md

Repository files navigation

Apache Dubbo Hessian2异常处理时的反序列化（CVE-2021-43297）

将两个项目分别导入两个idea
先运行org.apache.dubbo.samples.basic.BasicProvider#main启动服务端
再运行org.apache.dubbo.samples.basic.BasicConsumer#main启动客户攻击端

效果：

https://paper.seebug.org/1814/

About

Apache Dubbo Hessian2 CVE-2021-43297 demo

Report repository

Releases

No releases published

Packages

No packages published

Languages

Java 100.0%