¸®´ª½º

 3923, 18/197 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   ewqqw
   ¼Ò½º ºÐ¼® ºÎŹµå¸³´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_linux&no=4449 [º¹»ç]


ÀÌÁ¦ ¸· ¸®´ª½º¶û ÄÚµå ¹è¿ö°¡´Â »õ³»±â ÀÔ´Ï´Ù. ¤Ð¤Ð
#include <stdio.h>
#include <string.h>

int filter(char *cmd) {
        if (strstr(cmd, "f")) return 1;
        if (strstr(cmd, "sh")) return 1;
        if (strstr(cmd, "tmp")) return 1;
        return 0;
}

extern char **environ;
int main(int argc, char *argv[], char *envp[]) {
        char **p;

        printf("I am king the Godzo...\n");
        printf("I will let you execute a command again.\n");
        printf("However, I am much stronger than Tracer.\n");

        for (p=environ; *p; p++)
                memset(*p, 0, strlen(*p));

        putenv("PATH=/uri_mercy_gaemotham");

        if (filter(argv[1])) {
                printf("caught by filter!\n");
                return 0;
        }

        system(argv[1]);
        return 0;
}
  Hit : 2702     Date : 2017/03/10 12:29


    
ÇØÄð·¯ ÀÌ ¹®Á¦¸¦ Ç®ÀÌÇÏ·Á¸é Á÷Á¢ ½Ã½ºÅÛ¿¡¼­ ¸î°³ ºÁ¾ßÇÏ´Â°Ô À־ Ç®À̹ýÀº ¾Ë·Áµå¸®±â ¾î·Æ±¸¿ä
¾îÂ÷ÇÇ ¿äûÇÏ½Å°Ô ¼Ò½ººÐ¼®ÀÌ´Ï »ìÆ캸¸é
1. ȯ°æº¯¼ö¸¦ ¸ðµÎ »èÁ¦ÇÕ´Ï´Ù
2. PATH¿¡ /uri_mercy_gaemotham À» µî·ÏÇÕ´Ï´Ù. Áï ¿¹¸¦µé¾î cat flag.txt¸¦ Çϸé /uri_mercy_gaemotham/cat °¡ Á¸ÀçÇÏ´ÂÁö ã°Ô µË´Ï´Ù
3. ±× ÈÄ argv[1]À» ÀÎÀÚ·Î filter¸¦ ½ÇÇàÇϴµ¥, filterÇÔ¼ö¸¦ º¸¸é argv[1]¿¡ f³ª sh³ª tmp¶ó´Â ¹®ÀÚ¿­ÀÌ Á¸ÀçÇÏÁö ¾Ê¾Æ¾ß ÇÏ´Â °ÍÀ» ¾Ë ¼ö ÀÖ½À´Ï´Ù
4. ±× ÈÄ ÇÊÅ͸µÀ» Åë°úÇÑ argv[1]À» system()ÇÔ¼öÀÇ ÀÎÀÚ·Î ½ÇÇàÇÕ´Ï´Ù		 2017/03/10  
ewqqw ½ÇÇà½ÃÅ°´Ï±ñ Segmentation fault (core dumped)
°¡ ³ª¿À³×¿ä...		 2017/03/10  
ÇØÄð·¯ argv[1]À» ¾È³Ö°í ½ÇÇàÇÏ½Å°Ç ¾Æ´ÑÁö¿ä
argv[1]À̶õ°Ç ÇÁ·Î±×·¥ ½ÇÇàÈÄ¿¡ ÀÔ·ÂÇϴ°ÍÀÌ ¾Æ´Ï¶ó ÇÁ·Î±×·¥ ½ÇÇà°ú µ¿½Ã¿¡ ¼³Á¤ÇØÁÖ´Â °ÍÀÔ´Ï´Ù
cat text.txt¶ó´Â ¸í·É¿¡¼­´Â argv[0] = cat, argv[1] = test.txtÀÌ°í
ls -al À̶ó´Â ¸í·É¿¡¼­´Â argv[0] = ls. argv[1] = -al ÀÔ´Ï´Ù		 2017/03/11  
3583   ¼Ö¶ó¸®½º ¸®´ª½º°¡ ¸Ó¿¹¿ê?[1]     zz31
 11/05 2160
3582   ¼öÁ¤ÇÑ À§¿¡ Áú¹®À¸·Î ´äº¯ ºÎŹµå·Á¿ä ¤Ð¤Ð     ysw3381
 02/21 2603
3581   ¼û°ÜÁø ÆÄÀÏÀ» ½ÇÇà½ÃÅ°·Á¸é ¾î¶»°Ô Çϳª¿ä?[4]     winyx
 10/12 3426
3580   ¼Ò½ºÆÄÀÏ¿¡¼­ ¾Ë·ÁÁÖ¼¼¿ä[4]     õÀçÇØÄ¿7
 11/06 2247
3579   ¼Ò½º ¼³Ä¡ / rpm ¼³Ä¡ / yum ¼³Ä¡[3]     cykses
 10/31 9050
  ¼Ò½º ºÐ¼® ºÎŹµå¸³´Ï´Ù.[3]     ewqqw
 03/10 2701
3577   ¼Ò¸®°¡ ¾Ê³ª¿ä ¤Ì¤Ì[1]     zcb707
 02/22 2284
3576   ¼ÒÁßÇÑ µ¥ÀÌÅ͸¦ ã¾Æµå¸³´Ï´Ù!!!!!     datablue
 12/03 2239
3575   ¼ÓÀü¼Ó°ác¾ð¾î[5]     nsa09111
 11/02 2229
3574   »÷µå¸ÞÀÏ ÇÁ·Î±×·¥µ¹¾Æ°¡°ÔÇÒ¼ö¾ø³ª¿ä?     fje0978
 02/20 1697
3573   »ªµµ¾î °ü·Ã Áú¹®ÀÔ´Ï´Ù.[2]     dnwhdtjd
 10/16 2088
3572   »ýÃʺ¸ ¸®´ª½º Áú¹®[3]     skwksk
 01/21 2398
3571   »õ·Ò µ¥ÀÌŸ¸ÇÀ» ±ò·Á°í Çϴµ¥ ¾Ö·¯ ÀÔ´Ï´Ù ÇØ°áÇØ ÁÖ¼¼¿ä[5]     ljd1122
 08/01 2189
3570   »ï¼º ÄÄÅÍ´Â ¸®´ª½º¸¦ ¼³Ä¡ÇÒ ¼ö ¾ø´Ù????[5]     lunesoleil
 03/16 2101
3569   »ï¹Ù ¼³Ä¡ °ü·Ã Áú¹®ÀÔ´Ï´Ù.     saja0405
 01/19 2282
3568   »èÁ¦¿Í dependency¹®Á¦     bleue
 11/28 2211
3567   »ðÁú³¡¿¡ compiz»çÀÌÆ® ã¾ÒÀ½;;[1]     qkreoghks00
 11/15 2213
3566   »ç¿îµå°¡ ¾È³ª¿ä¤Ð.¤Ð;[3]     Naruk
 01/17 2128
3565   »ç¿îµåÄ«µå¸¦ ÀÏ´ÜÀº ¼³Ä¡Çϱä Çß½À´Ï´Ù.. ±×·±µ¥     skywoodz
 02/20 2263
3564   »ç¿îµåÄ«µå´Â ÀâÇû´Âµ¥ ¼Ò¸®°¡ ¾È³ª¿Í¿ä.     mixclub1111
 06/29 2738
[1]..[11][12][13][14][15][16][17] 18 [19][20]..[197]

Copyright 1999-2024 Zeroboard / skin by Hackerschool.org / Secure Patch by Hackerschool.org