CVE-2017-15715 Apache HTTPD 換行解析漏洞

From PwnWiki
Revision as of 10:32, 4 May 2021 by Pwnwiki (talk | contribs) (Created page with "==影響版本== 2.4.0~2.4.29都有可能存在該漏洞 ==漏洞利用== 上傳一個名為1.php的文件,被攔截: 600px 在1.php後面插入一...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

影響版本

2.4.0~2.4.29都有可能存在該漏洞

漏洞利用

上傳一個名為1.php的文件,被攔截:

Ap1.png

在1.php後面插入一個\x0A(注意,不能是\x0D\x0A,只能是一個\x0A),不再攔截:

Ap2.png

訪問剛才上傳的/1.php%0a,發現能夠成功解析,但這個文件不是php後綴,說明目標存在解析漏洞:

Ap3.png

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2017-15715_Apache_HTTPD_換行解析漏洞&oldid=2086"