微软Exchange客户端服务器信息泄露

关于

可以泄露远程Microsoft Exchange环境的内部IP地址。这包括承载诸如Outlook Web App(OWA)和自动发现等服务的客户端访问服务器(CAS)的内部地址。这还包括代理或网关处理OWA请求的内部地址。

利用

1
2
3
4
5
6
7
msf > use auxiliary/scanner/http/owa_iis_internal_ip
msf auxiliary(owa_iis_internal_ip) > show actions
...actions...
msf auxiliary(owa_iis_internal_ip) > set ACTION <action-name>
msf auxiliary(owa_iis_internal_ip) > show options
...show and set options...
msf auxiliary(owa_iis_internal_ip) > run

1
2
3
4
5
6
7
msf > use auxiliary/gather/f5_bigip_cookie_disclosure
msf auxiliary(f5_bigip_cookie_disclosure) > show actions
...actions...
msf auxiliary(f5_bigip_cookie_disclosure) > set ACTION <action-name>
msf auxiliary(f5_bigip_cookie_disclosure) > show options
...show and set options...
msf auxiliary(f5_bigip_cookie_disclosure) > run