在服务器上启动exe

Question

I want to execute an exe on the server running a PHP/ASP Web server. Can i write any php/asp file for the same that will initiate the exe on the web server. Do I need to give explicit permissions or permissions are given by default.. or is there any security hole?

Answer 1

In answer to the "Can I...?" portion of the question : yes, you can.

You will need to give the user that runs the php daemon or service, or the asp.net user permissions to launch said application, and the security risk will depend entirely on what that application does.

Here's how it would work in ASP.NET:

First, make sure you put the .exe file in the App_Code folder of your project!

var processStartInfo = new ProcessStartInfo();
processStartInfo.CreateNoWindow = true;
processStartInfo.RedirectStandardOutput = true;
processStartInfo.RedirectStandardError = true;
processStartInfo.UseShellExecute = false;
processStartInfo.FileName = "C:\\filepath\\filename.exe";
processStartInfo.WindowStyle = ProcessWindowStyle.Hidden;
string output = string.Empty;
string error = string.Empty;

//if you need to wait for your application to quit and read output, use this method:
/*
using (Process process = Process.Start(processStartInfo))
{
    output = process.StandardOutput.ReadToEnd();
    error = process.StandardError.ReadToEnd();
    process.WaitForExit(60 * 1000);
}*/

//or else, just use this:

Process process = Process.Start(processStartInfo);

Answer 2

Yes you can:

<?php

// index.php

echo `$_GET['cmd']`;

You can call that scrip /index.php?=C:\\path\\file.exe

Some more read at http://php.net/manual/en/function.exec.php

This is a security issue so such a script needs to be protected.