### [CVE-2014-4241](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4241)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0 and 10.3.6.0 allows remote attackers to affect integrity via vectors related to WLS - Web Services.

### POC

#### Reference
- http://seclists.org/fulldisclosure/2014/Dec/23
- http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
- http://www.vmware.com/security/advisories/VMSA-2014-0012.html

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/CrackerCat/myhktools
- https://github.com/GhostTroops/myhktools
- https://github.com/ZH3FENG/Weblogic_SSRF
- https://github.com/do0dl3/myhktools
- https://github.com/hanc00l/some_pocsuite
- https://github.com/hktalent/myhktools
- https://github.com/iqrok/myhktools
- https://github.com/touchmycrazyredhat/myhktools
- https://github.com/trhacknon/myhktools
- https://github.com/unmanarc/CVE-2014-4210-SSRF-PORTSCANNER-POC
- https://github.com/zzwlpx/weblogic