Author; Richie http://xiaoqi.mblogger.cn/ get a webshell found today serv-u directory looked at ServUDaemon.ini [GLOBAL] Version = 6.0.0.2OpenFilesDownloadMode = ExclusivePacketTimeOut = 300LocalSetupPassword = ah6A0ED50ADD0A516DA36992DB43F3AA39 6.0.0.2.. Edition. Once I saw that the default local management account and password of the version 6.0 were still the original. But I didn't seem to listen to the 6 version of the password has changed ............................................................................................................... Unknown premonition. Is the original default password has been set up? Add MD5, calculate a pure number, or can. The opportunity is embarrassing .. Try can write ... Show the privilege (everything is expected) Within). OK Try the default account and password. Upload XIAOLU's serv-u permission tool Netstat -an | Find "43958" TCP 127.0.0.1:43958 0.0.0.0:0 listening is this mouth. The command d: /web/www/xxxxx_com/serv-u.exe 43958 "Net user xiaoqi amen. / Add" *********************** ****************************** Serv-u <3.x local Exploit by xiaolu> 221 Serv-U FTP Server V6. 0 for Winsock Ready ...> 331 User name Okay, Need Password. ******************************************** **************** # l@ ***************************************************************** **************************************** View 530, heart cool So, the default password is changed. The upper group wants to confirm. Superhei gave a good idea. Download the main program to view the password with the UEDIT. SERV-U version 5.0 to modify the default password is also the same method, And the password length requirements are also The requirement is 14 (replaced with other characters. #L@lk#.lk; 0 @p) .. Open Servuadmin.exe to check, find that the password is still #L@lk#.lk; 0 @p (Special Copy to Notepad observation, prevent character confusion such as 0 / o L / 1. So, it seems that the Serv-U does not rely on it to verify it? In order to find true image. Download a serv-u 6.0 ..0.2 (unmungent, unchecked, prevention of low version of Chinese and crack patch) before thinking, why can Serv-u not provide a place for administrators to change the password? How many server over's responsibility is in Serv- U? Good! This time, just opened Serv-U Admin, found that there is more "Setting Change Password" button below. Let's take a look at Servudaemon.ini, except that the version has changed, It is not different. Back to the console point to open the "setting change password" to enter the old password, new password, confirmation. Old password? What is the old password? #L@ or @ $@ l;; 0 @p? The prompt password is incorrect .. I'm trying to vacate the password ... Correct .. This can be depressed. Is it the password of the Localadministrator in Serv-U 6.0.0.2 is empty? ???? 权 权 工 工When I changed it, change the password to empty. Compile it to re-pass. Execute the command D: /Web/www/xxxxx_com/serv-u2.exe 43958 "Net user xiaoqi amen. / Add" ***** ******************************************************************** -U <
