AJPy icon indicating copy to clipboard operation
AJPy copied to clipboard

Published 20 hours ago verified publisher icon hypn0s

WATCH OUT! use ajp read_file, the target is down!!!

Open rootGH opened this issue 2 years ago • 3 comments

I use is only one time, the target host is down and can't do anything socket.error: [Errno 10054] the host rerjects my connection? what code triggers it

rootGH avatar Jul 06 '21 02:07 rootGH

Hi,

I don't understand your issue. Can you please provide more details such as:

  • Is the target up?
  • Is the AJP port exposed and reachable?
  • Which options are you using?
  • What is the Tomcat version?

Without further details, I cannot help you.

hypn0s avatar Jul 06 '21 07:07 hypn0s

my issue is about read_file 'Exploit CVE-2020-1938' the target is up. ajp port 8009 is open. here I tried another script on github, it works, but the return has Chinese characters and unreadable, then I found your script, I use yours, it works but still can't read the Chinese characters, then I changed decode 'gbk' in line 387, then I tried again, the result is: socket.error: [Errno 10054] and can't connect it again

rootGH avatar Jul 06 '21 08:07 rootGH

I'm sorry but I did not test against instances with Chinese characters and I cannot work on this at the moment.

Feel free to make a pull request if you manage to fix this issue, it would be awesome :)

hypn0s avatar Jul 06 '21 08:07 hypn0s