¸®´ª½º

 3923, 1/197 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   ewqqw
   ¼Ò½º ºÐ¼® ºÎŹµå¸³´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_linux&no=4449 [º¹»ç]


ÀÌÁ¦ ¸· ¸®´ª½º¶û ÄÚµå ¹è¿ö°¡´Â »õ³»±â ÀÔ´Ï´Ù. ¤Ð¤Ð
#include <stdio.h>
#include <string.h>

int filter(char *cmd) {
        if (strstr(cmd, "f")) return 1;
        if (strstr(cmd, "sh")) return 1;
        if (strstr(cmd, "tmp")) return 1;
        return 0;
}

extern char **environ;
int main(int argc, char *argv[], char *envp[]) {
        char **p;

        printf("I am king the Godzo...\n");
        printf("I will let you execute a command again.\n");
        printf("However, I am much stronger than Tracer.\n");

        for (p=environ; *p; p++)
                memset(*p, 0, strlen(*p));

        putenv("PATH=/uri_mercy_gaemotham");

        if (filter(argv[1])) {
                printf("caught by filter!\n");
                return 0;
        }

        system(argv[1]);
        return 0;
}
  Hit : 2639     Date : 2017/03/10 12:29


    
ÇØÄð·¯ ÀÌ ¹®Á¦¸¦ Ç®ÀÌÇÏ·Á¸é Á÷Á¢ ½Ã½ºÅÛ¿¡¼­ ¸î°³ ºÁ¾ßÇÏ´Â°Ô À־ Ç®À̹ýÀº ¾Ë·Áµå¸®±â ¾î·Æ±¸¿ä
¾îÂ÷ÇÇ ¿äûÇÏ½Å°Ô ¼Ò½ººÐ¼®ÀÌ´Ï »ìÆ캸¸é
1. ȯ°æº¯¼ö¸¦ ¸ðµÎ »èÁ¦ÇÕ´Ï´Ù
2. PATH¿¡ /uri_mercy_gaemotham À» µî·ÏÇÕ´Ï´Ù. Áï ¿¹¸¦µé¾î cat flag.txt¸¦ Çϸé /uri_mercy_gaemotham/cat °¡ Á¸ÀçÇÏ´ÂÁö ã°Ô µË´Ï´Ù
3. ±× ÈÄ argv[1]À» ÀÎÀÚ·Î filter¸¦ ½ÇÇàÇϴµ¥, filterÇÔ¼ö¸¦ º¸¸é argv[1]¿¡ f³ª sh³ª tmp¶ó´Â ¹®ÀÚ¿­ÀÌ Á¸ÀçÇÏÁö ¾Ê¾Æ¾ß ÇÏ´Â °ÍÀ» ¾Ë ¼ö ÀÖ½À´Ï´Ù
4. ±× ÈÄ ÇÊÅ͸µÀ» Åë°úÇÑ argv[1]À» system()ÇÔ¼öÀÇ ÀÎÀÚ·Î ½ÇÇàÇÕ´Ï´Ù		 2017/03/10  
ewqqw ½ÇÇà½ÃÅ°´Ï±ñ Segmentation fault (core dumped)
°¡ ³ª¿À³×¿ä...		 2017/03/10  
ÇØÄð·¯ argv[1]À» ¾È³Ö°í ½ÇÇàÇÏ½Å°Ç ¾Æ´ÑÁö¿ä
argv[1]À̶õ°Ç ÇÁ·Î±×·¥ ½ÇÇàÈÄ¿¡ ÀÔ·ÂÇϴ°ÍÀÌ ¾Æ´Ï¶ó ÇÁ·Î±×·¥ ½ÇÇà°ú µ¿½Ã¿¡ ¼³Á¤ÇØÁÖ´Â °ÍÀÔ´Ï´Ù
cat text.txt¶ó´Â ¸í·É¿¡¼­´Â argv[0] = cat, argv[1] = test.txtÀÌ°í
ls -al À̶ó´Â ¸í·É¿¡¼­´Â argv[0] = ls. argv[1] = -al ÀÔ´Ï´Ù		 2017/03/11  
3923   ¸®´ª½º°¡ ¼³Ä¡µÈ ÆÄÀÏÀ» ±âÁ¸ ³»Àåssd¿¡¼­ ¿ÜÀåssd·Î ¿Å±â±â      wnddkdch2004
 01/16 1446
3922   VM ȯ°æ¿¡¼­ GPU »ç¿ë¹ý¿¡ ´ëÇÑ Áú¹®[1]     wuzu22
 07/19 1448
3921   ¸®´ª½º °øºÎ ¹æ¹ý, ±³Àç ÃßõÇØ ÁÖ¼¼¿ä.[1]     Haike0548
 05/24 1652
3920   vmware Ä®¸®¸®´ª½º Áú¹®ÀÖ¾î¿ä![2]     EgoistYI
 04/05 1745
3919   ftz trainer1 ¾ÏÈ£¿ä¤Ð[1]     keeyeon
 04/02 1585
3918   FTZÁ¢¼Ó¹æ¹ý[2]     tkd115
 01/13 2314
3917   ¸®´ª½º john the ripper´ëÇÑ Áú¹® Á» ÇÒ°Ô¿ä     cd1641
 11/20 1588
3916   ftz ȯ°æ±¸Ãà ÇÏ·Á°í Çϴµ¥ °è¼Ó ¿À·ù°¡ ¹ß»ýÇÕ´Ï´Ù. [2]     poh1207
 07/10 1604
3915     [re] ftz ȯ°æ±¸Ãà ÇÏ·Á°í Çϴµ¥ °è¼Ó ¿À·ù°¡ ¹ß»ýÇÕ´Ï´Ù.      kimwoojin0952
 08/02 1377
3914   x11vnc ¼³Ä¡ÈÄ, À©µµ¿ì ¾ÈµÊ. ubuntu18.04.2 LTS     localid
 04/23 2120
3913   ÆÄÀÏ µð½ºÅ©¸³ÅÍ[1]     turttle2s
 02/10 1584
3912   DVWA»ç¿ëÈÄ ÆÄÀ̾îÆø½º°¡¾ÈµË´Ï´Ù[1]     wlzh1313
 02/07 2008
3911   ¸®´ª½º ºÎÆÃUSB Áú¹®     iioks
 12/29 1701
3910   dionaea honeypot Çغ¸½ÅºÐ °è½Å°¡¿ä?     teletubbies
 07/05 2344
3909   ¸®´ª½º¿¡¼­ pupy¼³Ä¡ÇÒ¶§..     redfrog
 05/07 2939
3908   bootable USB ¸¸µé¶§     krimson701
 03/27 2267
3907   FTZ ·ÎÄÃȯ°æ ±¸ÃàÁú¹®[1]     krimson701
 03/19 2846
3906   ÇÏµå ¸µÅ©¿Í ½Éº¼¸¯ ¸µÅ©     ka0r1
 12/07 2147
3905   ¸®´ª½º [1]     jeffrey4127
 11/26 1879
3904   ¸®´ª½º vmware ¼³Ä¡[2]     jeffrey4127
 10/31 2742
1 [2][3][4][5][6][7][8][9][10]..[197]

Copyright 1999-2024 Zeroboard / skin by Hackerschool.org / Secure Patch by Hackerschool.org