A couple of methods you can use to gain a shell through a Tomcat server when you find weak credentials. Method 1). Uploading a .war (jsp) command shell direct in the web manager. Method 2). using Metasploit to gain a reverse shell.
Target system Windows XP SP3 running Adobe Acrobat PDF Reader V9. Metasploit is packed with great PDF exploits. Most A.V pick this up (but not all). Also try the web URL PDF exploits that work by just browsing to a URL. Just shows how important it is to update things like PDF, Java etc into […]