Metasploitable2 靶机漏洞 弱密码漏洞(WEAK PASSWORD)......................................................................................................... 2 SAMBA MS-RPC SHELL 命令注入漏洞 ................................................................................................ 6 VSFTPD 源码包后门漏洞 ................................................................................................................... 7 UNREALIRCD 后门漏洞 ...................................................................................................................... 9 LINUX NFS 共享目录配置漏洞......................................................................................................... 10 JAVA RMI SERVER 命令执行漏洞 ..................................................................................................... 13 TOMCAT 管理台默认口令漏洞 ........................................................................................................ 15 ROOT 用户弱口令漏洞(SSH 爆破) .............................................................................................. 18 DISTCC 后门漏洞 ............................................................................................................................. 21 SAMBA SYSMLINK 默认配置目录遍历漏洞 .................................................................................... 22 PHP CGI 参数注入执行漏洞 ............................................................................................................ 25 DRUBY 远程代码执行漏洞 ............................................................................................................. 26 INGRESLOCK 后门漏洞 .................................................................................................................... 29 弱密码漏洞(Weak Passw ord) 安全组织索引 CVE: OSVDB: BID: 原理 系统或者数据库的登录用户,密码简单或者和用户名相同,容易通过暴力破解手段来获取...