215, 1/11 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   bigshott
   ÆÄÀÏ ¾÷·Îµå Ãë¾àÁ¡ Áú¹® ÀÔ´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?AllArticle=true&no=11 [º¹»ç]


À¥ÇØÅ· °ü·Ã °øºÎ ÇÏ´ÂÁßÀä~

¶Ç ¾î·Á¿î ºÎºÐÀÌ »ý°Ü¼­ Áú¹® µå¸³´Ï´Ù. ^^

php ¼Ò½º±¸¿ä~

¾Æ·¡ ó·³ ÆÄÀÏ ¾÷·Îµå¸¦ ÇÒ ¼ö ÀÖ½À´Ï´Ù.


<form method=post enctype="multipart/form-data" action=index.php>
<input type=file name=upfile><input type=submit>

ÆÄÀÏ ¾÷·Îµå¸¦ Çؼ­ ¶Ç ´Ù¸¥ phpÆÄÀÏ ¼Ò½º¸¦ ÀÐÀ» ¼ö°¡ ÀÖÀ»±î¿ä?

°ü·Ã Ãë¾àÁ¡À» ¾Æ¹«¸® ã¾ÆºÁµµ ¾ø³×¿ä~

aaa;../../test/index.php ¿ä·±½ÄÀ¸·Îµµ Çغôµ¥ Ãâ·ÂÀÌ µÇÁö ¾Ê½À´Ï´Ù.

aaa;cp ./test/index.php ./test/index.txt ¿ä·±°Íµµ Çغ¸±¸¿ä ¤Ì¤Ð

°í¼ö´Ôµé Á¶¾ð Á» ºÎŹµå¸³´Ï´Ù.

¼ö°íÇϼ¼¿ä~
  Hit : 5927     Date : 2010/12/25 12:44


    
º°ºûÀ»´ã¾Æ À¥ ÇØÅ·À̳ª httpd¸¦ Àß ¾Æ´Â °ÍÀº ¾Æ´ÏÁö¸¸... ÀÏ´Ü Á¦ »ý°¢À» ¸»¾¸µå·Áº¼°Ô¿ä.
¸ÕÀú ÆÄÀÏÀÌ ¾÷·ÎµåµÈ °÷ÀÌ /home/httpuser/public_html/test.php·Î ¿Ã¶ó°¬Áö¸¸ index´Â ÀüÇô ´Ù¸¥ °÷¿¡ ÀÖ´Ù´Â °¡Á¤ÇսôÙ. °èÁ¤Àº httpuserÀ̱¸¿ä.

±×·¸´Ù¸é index.php¿¡¼­ test.php·Î Á¢±ÙÀ» ÇÑ´Ù°í ÇÏ¸é °æ·Î ÀÚü°¡ Ʋ·Á¼­ ./¿Í °°Àº ÀÚ±â ÀÚ½ÅÀÇ À§Ä¡¿¡¼­ Á¢±ÙÀº Èûµé°Ì´Ï´Ù.

ÀÌ ¶§ Àú °÷¿¡ Á¢±ÙÇÏ½Ç ¶§´Â Á¦ »ý°¢¿¡´Â ÁÖ¼ÒâÀ» ÀÌ¿ëÇÑ Á¢±Ùµµ Çѹø »ý°¢ÇØ º¸½Ç¸¸ ÇÏ´Ù°í »ý°¢ÇÕ´Ï´Ù.
<a href=http://www.domain.com/../../../../../../../../../../../../../../../../../home/httpuser/public_html/test.php target=_blank>http://www.domain.com/../../../../../../../../../../../../../../../../../home/httpuser/public_html/test.php</a>		 2010/12/25  
bigshott ¾Æ~ ±×·¸±º¿ä.
´äº¯ Á¤¸» °¨»çµå¸³´Ï´Ù. µµ¿ò ¸¹ÀÌ µÇ¾ú½À´Ï´Ù.
Áñ°Å¿î ¼ºÅºÀý º¸³»¼¼¿ä ^^		 2010/12/25