Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

BeanShell Remote Server Mode RCE Vulnerability (Telnet)

Information

Severity

Severity

Critical

Family

Family

Gain a shell remotely

CVSSv2 Base

CVSSv2 Base

10.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Mitigation

Created

Created

4 years ago

Modified

Modified

4 years ago

Summary

The remote host is running the BeanShell Interpreter in remote server mode which is prone to a Remote Code Execution vulnerability.

Affected Software

Affected Software

BeanShell Interpreter running in remote server mode.

Detection Method

Detection Method

The script sends a crafted request and checks if it is possible to execute code on the target host.

Solution

Solution

Restrict access to the listener or disable the remote server mode.