关联漏洞
标题:Microsoft Exchange Server 代码问题漏洞 (CVE-2021-26855)描述:Microsoft Exchange Server是美国微软(Microsoft)公司的一套电子邮件服务程序。它提供邮件存取、储存、转发,语音邮件,邮件过滤筛选等功能。 Microsoft Exchange Server 安全漏洞。攻击者可构造恶意HTTP请求,并通过Exchange Server进行身份验证。进而扫描内网,获取用户敏感信息。以下产品和版本受到影响:Microsoft Exchange Server 2013 Cumulative Update 23,Microsoft Exchange
描述
A fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).
介绍
# proxylogscan
<img src="https://proxylogon.com/images/logo-white.png" height="400">
This tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).
By chaining this bug with another post-auth arbitrary-file-write vulnerability to get code execution (CVE-2021-27065).
As a result, an unauthenticated attacker can execute arbitrary commands on Microsoft Exchange Server.
This vulnerability affects (Exchange 2013 Versions < 15.00.1497.012, Exchange 2016 CU18 < 15.01.2106.013, Exchange 2016 CU19 < 15.01.2176.009, Exchange 2019 CU7 < 15.02.0721.013, Exchange 2019 CU8 < 15.02.0792.010).
All components are vulnerable by default.
## Installation
> [Go 1.13+](https://golang.org/doc/install) required.
```console
$ go get dw1.io/proxylogscan
```
Or download pre-built binary at [release page](https://github.com/dwisiswant0/proxylogscan/releases).
## Usage
```console
$ proxylogscan -h
Usage of proxylogscan:
-m string
Request method (default "GET")
-p string
Proxy URL (HTTP/SOCKSv5)
-s Silent mode (Only display vulnerable/suppress errors)
-u string
Target URL/list to scan
```
### Examples
There are 3 ways to use this tool.
```
$ proxylogscan -u https://domain.tld
$ proxylogscan -u urls.txt
$ cat urls.txt | proxylogscan
$ subfinder -silent -d domain.tld | httpx -silent | proxylogscan
```
## Supporting Materials
- https://proxylogon.com
- https://msrc-blog.microsoft.com/2021/03/02/multiple-security-updates-released-for-exchange-server/
## License
`proxylogscan` is distributed under MIT.
文件快照
[4.0K] /data/pocs/d8e795132dd048d5f0d33e35b5cfe5579f8477e6
├── [ 159] go.mod
├── [ 10K] go.sum
├── [1.0K] LICENSE
├── [1.3K] main.go
├── [1.6K] README.md
├── [ 673] request.go
├── [1.3K] util.go
└── [ 217] vars.go
0 directories, 8 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。