细分一个漏洞

在进入LoggingReceiver的时候就已经开始线程了

所以看class LoggingReceiver extends Thread里的run方法
线程启动后会监听4445端口,如果有连接,则从ServerSocket的accept方法中取出这条连接,没有连接则持续监听

随后新线程走进Slurper对象,在该对象的run方法中,获取从accept取出的连接的输入流将输入流封装为ObjectInputStream对象,并调用了ObjectInputStream的readObject方法,通过反序列化恶意数据来触发漏洞


声明:
本文章用于学习交流,严禁用于非法操作,出现后果一切自行承担,阅读此文章表示你已同意本声明。

Disclaimer:
This article is for study and communication. It is strictly forbidden to use it for illegal operations. All consequences shall be borne by yourself. Reading this article means that you have agreed to this statement.