
Exploit
Exploit的英文意思就是利用,它在黑客眼里就是漏洞利用,有漏洞不一定就有Exploit(利用),有Exploit就肯定有漏洞。
我們幾乎每隔幾天就能聽到最近有一個(gè)新發(fā)現(xiàn)的可以被利用(exploit)的漏洞(vulnerability),然后給這個(gè)漏洞打上補(bǔ)丁。而事實(shí)上,這里面的內(nèi)容比你想象的要多,因?yàn)槟悴豢赡苤浪熊浖穆┒?,而且那些可利用的漏洞也只是被少?shù)人所了解。
漏洞是存在于一個(gè)程序、算法或者協(xié)議中的錯(cuò)誤,可能帶來一定的安全問題。但不是所有的漏洞都是能夠被利用來攻擊(exploitable)的,理論上存在的漏洞,并不代表這個(gè)漏洞足以讓攻擊者去威脅你的系統(tǒng)。一個(gè)漏洞不能攻擊一個(gè)系統(tǒng),并不代表兩個(gè)或多個(gè)漏洞組合就不能攻擊一個(gè)系統(tǒng)。例如:空指針對象引用(null-pointerdereferencing)漏洞可以導(dǎo)致系統(tǒng)崩潰(如果想做拒絕服務(wù)攻擊就足夠了),但是如果組合另外一個(gè)漏洞,將空指針指向一個(gè)你存放數(shù)據(jù)的地址并執(zhí)行,那么你可能就利用此來控制這個(gè)系統(tǒng)了。
一個(gè)利用程序(Anexploit)就是一段通過觸發(fā)一個(gè)漏洞(或者幾個(gè)漏洞)進(jìn)而控制目標(biāo)系統(tǒng)的代碼。攻擊代碼通常會(huì)釋放攻擊載荷(payload),里面包含了攻擊者想要執(zhí)行的代碼。exploits利用代碼可以在本地也可在遠(yuǎn)程進(jìn)行。一個(gè)遠(yuǎn)程攻擊利用允許攻擊者遠(yuǎn)程操縱計(jì)算機(jī),理想狀態(tài)下能夠執(zhí)行任意代碼。遠(yuǎn)程攻擊對攻擊者非常重要,因?yàn)楣粽呖梢赃h(yuǎn)程控制他/她的主機(jī),不需要通過其它手段(讓受害者訪問網(wǎng)站,點(diǎn)擊一個(gè)可執(zhí)行文件,打開一個(gè)郵件附件等等),而本地攻擊一般都是用來提升權(quán)限。
MS Windows (.doc File) Malformed Pointers Denial of Service Exploit
/***************************************************************************** * Microsoft Windows .doc File Malformed Pointers DoS * * ... 08-10-08ITechBids 7.0 Gold (XSS/SQL) Multiple Remote Vulnerabilities
######## ## ## ###### ######## ## ## ######## ######## ####### ######## ## ### ## ## ## ## ## ## ## ## ## ## ## ## ## ... 08-10-08MFORUM 0.1a Arbitrary Add-Admin Vulnerability
================================================= MFORUM 0.1a Arbitrary Add-Admin Vulnerability ================================================= ,--^---... 08-10-08CodeDB (list.php lang) Local File Inclusion Vulnerability
############################################################################### # # Name : CodeDB (list.php lang) Local File Inclusion Vulnerability # A... 08-10-08Scripteen Free Image Hosting Script 1.2 (cookie) Pass Grabber Exploit
<?php /* Coded By RMx - Liz0zim BiyoSecurity.Com & Coderx.org Ki zava Ki Zava :) Thanx : Crackers_Child - TR_IP - Volqan - All SQL Low3rz */ e... 08-10-08Pluck 4.5.1 (blogpost) Local File Inclusion Vulnerability (win only)
########################## www.BugReport.ir ######################### # # AmnPardaz Security Research Team # # Title: Pluck Local File inclusion # Ven... 08-10-08Bilboblog 2.1 Multiple Remote Vulnerabilities
------------------------------------------------------------------ Name : Bilboblog 2.1 Multiples Vulnerabilities Description : Bilboblog is a small... 08-10-08pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability
==================================================== | pSys v0.7.0 Alpha Multiple Remote File Include | (works only with register_globals = on) ... 08-10-08- --== ============================================================================ ==-- --== Galatolo Web Manager 1.3a <= XSS / Remote SQL Injection Vulnerability... 08-10-08
Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability
<< In The Name Of GOD >> ------------------------------------------------------------- - [ Pe... 08-10-08- ____________________ ___ ___ ________ _ _____/_ ___ / | \_____ | __)_ / // ~ / | | \ ___ Y / | /___... 08-10-08
- ##################################################### # Author : BeyazKurt # Contact : Djm-sut@Hotmail.Com # # Script : php Help Agent (v1.1 Full & 1.0) ... 08-10-08
Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability
############################################################################################ # ... 08-10-08HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities
############################################################### #################### Viva IslaM Viva IslaM #################### ## ## Remote SQL injection Vulnerabi... 08-10-08PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability
vBulletin PhotoPost vBGallery v2.x Remote File Upload Found by : Cold z3ro e-mail : exploiter@hackteach.org Home page : www.Hack.ps ==================... 08-10-08PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit
#!/usr/bin/perl #inphex #PHPizabi v0.848b C1 HFP1 Remote Code Execution #http://www.dz-secure.com/tools/1/WebESploit.pl.txt #if you are seeking for a partner to ... 08-10-08AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability
|___________________________________________________| | |AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability | |____________________________... 08-10-08Joomla Component DT Register Remote SQL injection Vulnerability
/--------------------------------------------------------------- / / Joomla Component DT Register Remote SQL injection ... 08-10-08Microsoft DNS Server (Dynamic DNS Updates) Remote Exploit
/* Exploiting Microsoft DNS Dynamic Updates for Fun and profit Andres Tarasco Acu?a - (c) 2007 Url: http://www.514.es By default, most Microsoft D... 08-10-08tplSoccerSite 1.0 Multiple Remote SQL Injection Vulnerabilities
############################################################### #################### Viva IslaM Viva IslaM #################### ## ## Remote SQL injection Vulnerabi... 08-10-08