PHPת»»ROOTÉí·Ý

PHP code:

<?
/* PHPÖÐÈçºÎÔö¼ÓÒ»¸öϵͳÓû§
ÏÂÃæÊÇÒ»¶ÎÀý³Ì£¬Ôö¼ÓÒ»¸öÃû×ÖΪjamesµÄÓû§,
rootÃÜÂëÊÇ verygood¡£½ö¹©²Î¿¼
*/
$sucommand = "su --login root --command";
$useradd = "useradd ";
$rootpasswd = "verygood";
$user = "james";
$user_add = sprintf("%s \"%s %s\"",$sucommand,$useradd,$user);
$fp = @popen($user_add,"w");
@fputs($fp,$rootpasswd);
@pclose($fp);
?>



ÇëÎÊ£ºÒ»

ͨ¹ýÉÏÊö³ÌÐò¿ÉÒÔ¼òµ¥ÊµÏÖPHPת»»ROOTÉí·Ý ´Ó¶øÖ´ÐÐROOTÃüÁî

ÎÒµÄÉϸöϵͳ¿ÉÒÔʵÏÖ µ«Êǹ¤×÷ÐèÒª ÏÖÔÚ»»ÁËRHEL5 ¾Í²»ÐÐÁË

Ìáʾ´íÎóΪ£ºstandard in must be a tty

ÊDz»ÊÇÒòΪ°²×°¹ý³ÌÖÐȱÉÙʲô¶«Î÷µ¼ÖÂÉÏÊöÎÊÌâµÄ³öÏÖ£¿

¿´¼ûÓÐÈËÉèÖÃphp.iniÀï ¹ØÓÚtty²»ÐèÒªÃÜÂë ´Ó¶ø½â¾ö µ«ÊÇ ÎÒÐèÒªºÍSHELL¶à´Î½øÐÐÊý¾Ý½»»¥

ÇëÎÊÓ¦¸ÃÊÇÄÄÀïµÄÎÊÌâÄØ£¿GOOGLEµÄÒªÍÂѪÁËҲûÕÒµ½ÂúÒâµÄ´ð°¸ Çë´ïÈËÖ¸µ¼

ÇëÎÊ£º¶þ

Èç¹ûʵÏÖÁËÉÏÊö¹¦ÄÜ ¼´²»ÔÙ³öÏÖstandard in must be a tty´íÎó ¿ÉÒÔÕý³£ÊäÈëpasswd

ת»»Éí·Ý ÄÇôÄܲ»ÄÜʵÏÖ@fputs($fp,$rootpasswd); µÄÁ¬Ðøµ÷Óà ÒÔ´«µÝ¸øshellÁ¬ÐøµÄÐÅÏ¢£¿

Èç¹û²»ÄÜ Ó¦¸Ã²ÉÓñðµÄÄÄÖÖ·½·¨ ʹPHP¶Ë¿ÉÒÔºÍSHELL½øÐжà´ÎÁ¬ÐøµÄÊý¾Ý½»»¥£¿

---

·¹ýµÄ°ï涥Æ𣬲»ÄܳÁ°¡~~~

---

Õâ¸ö²»»á,°ï¶¥

---

°ïÄ㶥Æ𡣡£¡£
ÎÊÏÂÂ¥Ö÷£¬Èç¹û±àдPHPÖ´ÐÐshellÃüÁÈçshutdown£¬ÈçºÎÅä