简述了当今社会信息安全的重要性, 说明了渗透测试技术中文件上传漏洞的基本原理, 列举了文件上传漏洞能够造成的危害, 对文件上传漏洞进行详细分析.由于文件上传漏洞一般伴随着服务器解析漏洞出现, 结合三种不同的Web应用容器 (IIS、Apache、PHP) 的解析漏洞, 解释文件上传漏洞与服务器解析漏洞之间的关系, 详细说明文件上传漏洞出现的原因;从Web站点的两种上传文件验证方式—客户端验证和服务器端验证阐述了相应的攻击技巧, 通过对五种攻击方法 (绕过客户端验证、绕过黑名单与白名单验证、绕过MIME验证、绕过目录验证和截断上传攻击) 的具体实验描述了对文件上传漏洞的攻击过程, 并给出了实验代码;最后针对实验中的攻击方法, 提出了四类文件上传漏洞的有效防御措施, 并对全文进行总结, 对未来提出展望.%We briefly describe the importance of social network security in today's society, explain the basic principle of file upload vulnerability in penetration testing technology, list the hazards caused by file upload vulnerability, and analyze the file upload vulnerability in detail.Because the file upload vulnerability generally accompanies server parsing vulnerability, combined with the parsing vulnerabilities of three different Web application containers (IIS, Apache and PHP), we explain the relationship between file upload vulnerability and server parsing vulnerability, and the reasons why the vulnerability can be caused.Based on two ways to verify the uploaded files from Web sites:client authentication and server-side authentication, we illustrate the attack techniques, and based on five attack methods (bypassing client authentication, bypassing blacklists and whitelisting, bypassing MIME verification, bypassing directory verification, and truncating upload attack), we describe the process of attack on file upload vulnerability and give the experimental code.Finally, aiming at the attack methods in the experiment, we put forward four kinds of defensive measures for file upload vulnerability, summarizing full text, prospecting for future.
展开▼
