标题: [CGI漏洞]高手来 [打印本页]

---

作者: happyinghehe    时间: 2004-3-7 01:06     标题: [CGI漏洞]高手来

[CGI漏洞]
/null.ida [漏洞描述]
/null.idq [漏洞描述]
/scripts/samples/search/qfullhit.htw [漏洞描述]
/scripts/samples/search/qsumrhit.htw [漏洞描述]
/abczxv.htw [漏洞描述]
/main.asp%81 [漏洞描述]
[开放端口]
端口21开放: FTP (Control)
[Banner]
220 Serv-U FTP Server v4.0 for WinSock ready...
[End of banner]
端口80开放: HTTP, World Wide Web
[Banner]
HTTP/1.1 302 Object moved Server: Microsoft-IIS/5.0 Date: Sun, 11 Jan 2004 16:35:42 GMT Location: main.asp Connection: Keep-Alive Content-Length: 121 Content-Type: text/html Set-Cookie: ASPSESSIONIDCASDDRDC=HLDBOOEAEEMPEFEFJLDAOFAF; path=/ Cache-control: private
[End of banner]
端口443开放: HttpS, Secure HTTP
[Banner]
  [None]
[End of banner]
端口3389开放: Windows 2000 remote admin
[Banner]
  [None]
[End of banner]

如何加用户

---

作者: 冰血封情    时间: 2004-3-7 17:33     标题: [CGI漏洞]高手来

/null.ida [漏洞描述]
/null.idq [漏洞描述]
这你还问？溢出直接SYSTEM权限

---

欢迎光临 黑色海岸线论坛 (http://bbs.thysea.com/)

Powered by Discuz! 7.2