Shulou(Shulou.com)05/31 Report--

This article mainly analyzes how to analyze the relevant knowledge points of Apache vulnerability recurrence, the content is detailed and easy to understand, the operation details are reasonable, and has a certain reference value. If you are interested, you might as well follow the editor to have a look, and follow the editor to learn more about "how to analyze the recurrence of Apache vulnerabilities".

Apache parsing vulnerability

Loophole principle

The rule for Apache parsing files is to start parsing from right to left, and if the suffix is unrecognized file parsing, then judge to the left. For example, if the suffixes test.php.owf.rar ".owf" and ".rar" are apache unrecognized parsing, apache will parse wooyun.php.owf.rar into php.

Loophole form

Www.xxxx.xxx.com/test.php.xxx

Remaining configuration problems lead to vulnerabilities

(1) if there is such a line in the conf of Apache to configure AddHandler php5-script .php, as long as the file name contains .php, even if the file name is test2.php.jpg, it will be executed with php.

(2) if there is such a line in the conf of Apache to configure AddType application/x-httpd-php. Jpg can be executed in php even if the extension is jpg.

Lab environment: Windows Server 2008 R2

Phpstudy2018

Restart after adding AddHandler php5-script .php to httpd.conf

Create a php sentence in the root directory with the suffix .php.xxx

Visit to see if it can be parsed

Parsing successful, ant sword connection

This is the end of the introduction on "how to analyze the recurrence of Apache vulnerabilities". More related content can be searched for previous articles, hoping to help you answer questions and questions, please support the website!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.