Metasoft MetaCRM Deserialization Vulnerability in download.jsp Remote Code Execution
Vulnerability
A critical deserialization vulnerability has been identified in Metasoft MetaCRM versions through 6.4.2. The issue arises in the download.jsp file, specifically within the AnalyzeParam function, where the manipulation of the 'p' argument leads to unsafe deserialization of data. This vulnerability can be exploited remotely and has been publicly disclosed, with an available proof-of-concept exploit.
Impact
Exploitation of this vulnerability allows for deserialization of untrusted data, leading to remote code execution on the server.
Reproduction
The vulnerability can be reproduced by sending a request to the download.jsp page with a crafted 'p' parameter that exploits the deserialization flaw. This can be done manually or using an automated tool, such as a web vulnerability scanner or a custom script, that targets the specific deserialization vulnerability in the Fastjson library.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.