黑客大曝光：无线网络安全（原书第2版）（样章）.pdfVIP

Hacking / Hacking Exposed Web Applications / Scambray / 174064-3 92 Hacking Exposed Web Applications MANUAL EXPLOITATION We showed you the easy way first because that’s probably the way the majority of attacks are performed (since most malicious hacking follows the path of least resistance). However, more sophisticated attackers may expend substantially more time and effort to bring a web server down, so we’ll take some time in this section to illustrate some of the finer points of a handcrafted attack. The key things to notice in this example are the increased level of time and skill brought to bear on identifying and then exploiting the vulnerability, as opposed to the Metasploit example. Take-home point: just because you run a web platform that doesn’t rate a ton of attention from projects like Metasploit doesn’t mean you’re any less vulnerable! Oracle WebLogic Node Manager Remote Command Execution Popularity: 1 Simplicity: 5 Impact: 9 Risk Rating: 5 In May 2010, a vulnerability was discovered in the WebLogic Node Manager service that ultimately allowed the execution of arbitrary commands on a WebLogic server. WebLogic is a popular J2EE platform from Oracle. The WebLogic Node Manager is an administrative service for starting and stopping WebLogic server instances. It uses a straightforward text-based network protocol to communicate with clients and, by default, encapsulates traffic using SSL on port 5556/ TCP. Due to the protocol’s st