# Citrix Application Delivery Controller和Citrix Gateway的RCE
检测有无补丁:
“`
GET /vpn/../vpns/cfg/smb.conf
patch>>403
no patch 200
“`
无补丁:
![patch.png](/media/editor/patch_20210720210321640873.png)
exp1:
“`
usage: bash CVE-2019-19781.sh XX.XX.XX.XX ‘cat /etc/passwd’
“`
exp2:
“`
usage: citrixmash.py [-h] targetip targetport listenip listenport
“`
[点我下载 CVE-2019-19781 Citrix Application Delivery Controller和Citrix Gateway的RCE.zip](/Gr33kLibrary/download_tool/104/)
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
请登录后查看评论内容