admin/0day
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add 绿盟UTS综合威胁探针管理员任意登录 漏洞

Browse Source
This commit is contained in:
helloexp 2022-06-01 11:24:59 +08:00
parent f5f2e12615
commit 1d00d653f8
5 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
99-安全产品漏洞/绿盟UTS综合威胁探针管理员任意登录/images/1432414.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 16 KiB

BIN
99-安全产品漏洞/绿盟UTS综合威胁探针管理员任意登录/images/aab102ec.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 12 KiB

BIN
99-安全产品漏洞/绿盟UTS综合威胁探针管理员任意登录/images/f17fc7e8.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 27 KiB

BIN
99-安全产品漏洞/绿盟UTS综合威胁探针管理员任意登录/images/success.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 23 KiB

21
99-安全产品漏洞/绿盟UTS综合威胁探针管理员任意登录/绿盟UTS综合威胁探针管理员任意登录.md Normal file
View File

@ -0,0 +1,21 @@
# 绿盟UTS综合威胁探针管理员任意登录
> 绿盟全流量威胁分析解决方案针对原始流量进行采集和监控,对流量信息进行深度还原、存储、查询和分析
## 影响版本
设备版本 <=V2.0R00F02SP02
## 漏洞利用
1.登录页面输入任意用户名密码
![](images/f17fc7e8.png)
2. 修改相应包为 `true`
![](images/aab102ec.png)
3. 返回重新登录,替换原来的`password`
![](images/1432414.png)
4. 登录成功
![](images/success.png)