Tag:文件下载漏洞
Article From:https://segmentfault.com/q/1010000012142225
Question:

Question: what is the difference between arbitrary file download and SSRF?

Answer 0:

A lot of web applications are providedGetting data from other serversFunction. Using user specified URL, web application can get pictures, download files, read file contents, etc. If this function is used maliciously, it can take advantage of the defective web application as proxy attack.Remote and local servers。This form of attack is called Server-side Request Forgery.

For example, make the server get local arbitrary files

file:///C:/Windows/win.ini
file:///etc/passwd

for example

SSRF It can be used to implement any file download, but it can be used for a higher level of attack, by judging local installed services, so as to exploit vulnerabilities for specific services and even gain complete control.

Reference resources

  • (SSRF attack case analysis

Leave a Reply

Your email address will not be published. Required fields are marked *