¸®´ª½º

 3916, 1/196 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   khl0803
   Çؼ®ºÎŹµå·Á¿ä

http://www.hackerschool.org/HS_Boards/zboard.php?AllArticle=true&no=3955 [º¹»ç]


--------------------------------------------------------------------------------

Port Scan


80(HTTP)

21(FTP Control)

443(HTTPS)

3306(MYSQL)


--------------------------------------------------------------------------------

CGI Scan


WEB Banner: Apache

WWW Title: APMSETUP 6

CGI Holes

/index.php?file=../../../../../../etc/passwd (HTTP: 200 )

/index.php?file=/etc/passwd (HTTP: 200 )

/index.php?chemin=..%2F..%2F..%2F..%2F..%2F..%2F%2Fetc (HTTP: 200 )

/index.php?page=../../../../etc/passwd (HTTP: 200 )

/index.php/ (HTTP: 200 )

/?S=D (HTTP: 200 )

/?PageServices (HTTP: 200 )

/?wp-html-rend (HTTP: 200 )

/?M=A (HTTP: 200 )



--------------------------------------------------------------------------------

MISC


MySQL Version is:

  Hit : 3681     Date : 2011/04/19 03:52


    
/x7375696e6567 ¾Æ¹«·¡µµ Ãë¾àÁ¡ ½ºÄµ°°¾Æ¼­
Çؼ®Çص帮±â ²¬²ô·´³×¿ä		 2011/04/19  
khl0803 /x7375696e6567 : ³× ¸®´ª½º±â¹ÝÀÇ ¼­¹öÀÇ Ãë¾àÁ¡À» ½ºÄµÇÑ°á°úÀÔ´Ï´Ù.
¾ÆÁ÷ Áö½ÄÀÌ ÂªÀºÁö¶ó ÀÌ·¸°Ô Áú¹®±ÛÀ»¿Ã·È±¸¿ä

indexÂÊ¿¡ Ãë¾àÁ¡ÀÌ ¸¹À̹߰߉ç°í
index.php?page=../../../../etc/passwd (HTTP: 200 )
ÀÌ°ÍÀ¸·Î Á¢¼ÓÀ»ÇØ ºñ¹Ð¹øÈ£¸¦ ¼öÁ¤ÇÒ¼öÀÖ´Ù°í »ý°¢Çϴ´ë Á¦»ý°¢ÀÌ Æ²¸°°Ç°¡¿ä

(Å©·¡Å·°ü·Ã Áú¹®±ÛÀ̾ƴϹǷΠ¾È½ÉÇϼŵµµË´Ï´Ù)°³ÀÎ ÇÁ¸®¼­¹ö¸¦µ¹¸®°íÀÖ´Â´ë ¼­¹öÇØÅ·ÀÌ ÀÚÁÖ
µé¾î¿Í¼­ ¾î¶²¹æ½ÄÀ¸·Î µé¾î¿À³ª ¿©·¯°¡Áö°ø°Ý¹æ½ÄÀ» ã¾Æº¸°íÀÖ½À´Ï´Ù¤Ð		 2011/04/19  
W.H. ;; Á÷Àü ÇغÁ¾ß ¾Ë°ÙÁö¸¸ ÀúÁ¤µµ¸é º¸¾È¼öÁØÀÌ ²Ï³·³×¿ä.

HTTP200ÀÇ Àǹ̴ ±× ´ë´ä ÄÚµå? Á¤È®ÇÑ ¸íĪÀÌ ±â¾ï ¾Ê³ª´Âµ¥...

¶µç Çã¶ô¹ÞÁö ¾ÊÀº »ç¿ëÀÚ°¡ ±× ÆÄÀÏ¿¡(/ect/passwdµî ) Á¢±ÙÇÒ ¼ö ÀÖ´Ù´Â °Ì´Ï´Ù.

½ºÄ³³Ê°¡ Ç×»ó Á¤È®ÇÑ°Ç ¾Æ´Ï´Ï Á÷Á¢ Àú·¸°Ô ÁÖ¼Òâ¿¡ Ãĺ¸¼Å¼­ ÆÄÀÏÀÌ ´Ù¿îÀ̵ǴÂÁö È®ÀÎÇغ¸¼¼¿ä..
 2011/04/19  
W.H. Path Traversal¶õ °ø°Ý±â¹ýÀ̶ó´Âµ¥ Çѱ۸íÀÌ »ý°¢ÀÌ ¾Ê³ª³×¿ä;; 2011/04/19  
khl0803 W.H.: ±×´Ï±î (¾ÆÀÌÇÇ)index.php?page=../../../../etc/passwd (HTTP: 200 )
ÀÌ·±½ÄÀ¸·Î Á¢¼ÓÀ»ÇÑÈÄ ´Ù¿îÀ̵dzª È®ÀÎÀ»ÇϸéµÇ´Â°Ç°¡¿ä? Àú°¡ Çغ»°á°ú·Ð
±×³É ÀúÀÇ È¨ÆäÀÌÁö¸ÞÀθ¸³ª¿À´ø´ë ½ºÄ³³Ê°¡ À߸øµÈ°Ç°¡¿ä?		 2011/04/20  
/x7375696e6567 W.H.//
±×³É http ÄÚµå¶ó°í ºÎ¸£Áö¾Ê¾Æ?¤»¤» ±×·¸°Ô ¾Ë°íÀÖ¾ú´Âµ¥..
À¥¼­¹ö¸¦ À©µµ¿ì¿¡´Ù°¡ µÎ¼Ì´Âµ¥ ½ºÄ³´× °á°ú°¡ Àú·±°Å¸é, ½ºÄ³³Ê ÀÚü°¡
ÀÌ»óÇÑ°Å°í¿ä.
/etc/passwd ÆÄÀÏ °æ·Îµéµµ ÀÌ»óÇϳ׿ä
DocumentRoot ÇÏÀ§ µð·ºÅ丮¿¡´Ù°¡ /etc/passwd¸¦ ÀϺηΠ¿Å°å´Ù¸é ¸ð¸¦±î(¿Å±æÀÌÀ¯µµ¾øÁö¸¸)
´ëÃæ º¸¸é
[ À¯Àú @ µð·ºÅ丮]ls
etc otherDirecotry
[ À¯Àú @ µð·ºÅ丮]ls etc
passwd other any something blahblah
[ À¯Àú @ µð·ºÅ丮]ls otherDirectory
etc other something blah
[ À¯Àú @ µð·ºÅ丮]cd otherDirectory;ls etc
passwd other any something blahblah

ÀÌ·±½ÄÀ̶ó´Â°Çµ¥
¸»µµ ¾ÈµÇ´Â°Å °°³×¿ä		 2011/04/20  
khl0803 /x7375696e6567:
¿ª½Ã Áß±¹Åø·Î °ø°ÝÀ»ÇÑ´Ù°í Çã¼¼¸¦ºÎ¸®´õ´Ï Áß±¹Á¦·Î °­·ÂÇÏ´Ù°í ¸»³ª¿À°íÀÖ´Â ½ºÄ³³Ê·Î µ¹·ÁºÃ´õ´Ï ÀÌ·±½ÄÀ¸·Î³ª¿Â°Å±º¿ä ÈÞ.. ±×·¸´Ù¸é ÇØÅ·¹üÀÌ ¸®´ª½º·Î Á¢¼ÓÀ»Çؼ­ ·çÆ®±ÇÇÑÀ» µû°£°Å·Î¹Û¿£ »ý°¢ÇÒ¼ö¾ø°Ú±º¿ä ¤Ð..		 2011/04/21  
khl0803 W.H.:
http://¼­¹ö¾ÆÀÌÇÇ/index.php?page=../../../../etc/passwd
ÀÌ·¸°Ô ÁÖ¼Òâ¿¡³Ö°í Á¢¼ÓÀ»Çغ¸¾Ò´õ´Ï ±×³É ȨÆäÀÌÁö ¸ÞÀθ¸³ª¿Ã»Ó º°¹®Á¦´Â¾ø´Â°Å°°½À´Ï´Ù
¾Æ¸¶ ½ºÄ³³Ê°¡ À߸øµÈ°Å°°±º¿ä ¤Ð		 2011/04/21  
/x7375696e6567 ¿î¿µÃ¼Á¦°¡ ¸®´ª½ºÀÎÁö À©µµ¿ìÁîÀÎÁö¸¦ ¾Ë·ÁÁֽøé
Á»´õ Á¤È®ÇØÁöÁÒ ¤»¤»
À©µµ¿ìÁî¸é ½ºÄ³³Ê ¹ö¸®½Ã¸é µÇ±¸¿ä
¸®´ª½º¸é ±×·¡µµ Á¶±Ý´õ ¿¬±¸¸¦ Çغ¸¼Å¾ßµÅ¿ä		 2011/04/22  
khl0803 ¿î¿µÃ¼Á¦´Â ¼­¹ö±¸µ¿Àº ¸®´ª½º ÄÄÇ»ÅͿüÁ¦´Â À©µµ¿ìÀԴϴ٤Р2011/04/28