漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2013-026330
漏洞标题:中国古籍保护网存在struts2漏洞
相关厂商:中国古籍保护网
漏洞作者: Anonymous
提交时间:2013-06-19 18:42
修复时间:2013-08-03 18:43
公开时间:2013-08-03 18:43
漏洞类型:系统/服务补丁不及时
危害等级:高
自评Rank:20
漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2013-06-19: 细节已通知厂商并且等待厂商处理中
2013-06-23: 厂商已经确认,细节仅向厂商公开
2013-07-03: 细节向核心白帽子及相关领域专家公开
2013-07-13: 细节向普通白帽子公开
2013-07-23: 细节向实习白帽子公开
2013-08-03: 细节向公众公开
简要描述:
尼玛首页就是struts2
http://pcab.nlc.gov.cn/initialIndex.action
情何以堪?
详细说明:
网站物理路径: C:\Program Files\Apache Software Foundation\Tomcat 6.0\webapps\gjbh
java.home: C:\Program Files\Java\jre6
java.version: 1.6.0_38
os.name: Windows Server 2008
os.arch: amd64
os.version: 6.0
user.name: WINDOWS-NYQYL9Y$
user.home: C:\
user.dir: C:\Program Files\Apache Software Foundation\Tomcat 6.0
java.class.version: 50.0
java.class.path: C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\bootstrap.jar;C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin\tomcat-juli.jar
java.library.path: C:\Program Files\Apache Software Foundation\Tomcat 6.0\bin;C:\Windows\Sun\Java\bin;C:\Windows\system32;C:\Windows;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\VSShell\Common7\IDE\;C:\Program Files (x86)\Microsoft Visual Studio 9.0\Common7\IDE\PrivateAssemblies\;C:\Program Files (x86)\Microsoft SQL Server\100\DTS\Binn\;.
file.separator: \
path.separator: ;
java.vendor: Sun Microsystems Inc.
java.vendor.url: http://java.sun.com/
java.vm.specification.version: 1.0
java.vm.specification.vendor: Sun Microsystems Inc.
java.vm.specification.name: Java Virtual Machine Specification
java.vm.version: 20.13-b02
java.vm.vendor: Sun Microsystems Inc.
java.vm.name: Java HotSpot(TM) 64-Bit Server VM
java.specification.version: 1.6
java.specification.vender:
java.specification.name: Java Platform API Specification
java.io.tmpdir: C:\Program Files\Apache Software Foundation\Tomcat 6.0\temp
hibernate信息
-- listing properties --
java.vendor=Sun Microsystems Inc.
show_sql=true
catalina.base=C:\Program Files\Apache Software Foun...
hibernate.connection.url=jdbc:sqlserver://127.0.0.1:1433
sun.management.compiler=HotSpot 64-Bit Tiered Compilers
catalina.useNaming=true
os.name=Windows Server 2008
sun.boot.class.path=C:\Program Files\Java\jre6\lib\resour...
java.util.logging.config.file=C:\Program Files\Apache Software Foun...
sun.desktop=windows
java.vm.specification.vendor=Sun Microsystems Inc.
java.runtime.version=1.6.0_38-b05
user.name=WINDOWS-NYQYL9Y$
shared.loader=
tomcat.util.buf.StringCache.byte.enabled=true
connection.driver_class=com.microsoft.sqlserver.jdbc.SQLServe...
user.language=zh
java.naming.factory.initial=org.apache.naming.java.javaURLContext...
sun.boot.library.path=C:\Program Files\Java\jre6\bin
dialect=org.hibernate.dialect.SQLServerDialect
java.version=1.6.0_38
java.util.logging.manager=org.apache.juli.ClassLoaderLogManager
user.timezone=Asia/Shanghai
sun.arch.data.model=64
java.endorsed.dirs=C:\Program Files\Apache Software Foun...
sun.cpu.isalist=amd64
sun.jnu.encoding=GBK
file.encoding.pkg=sun.io
package.access=sun.,org.apache.catalina.,org.apache....
file.separator=\
java.specification.name=Java Platform API Specification
java.class.version=50.0
user.country=CN
connection.url=jdbc:sqlserver://127.0.0.1:1433
java.home=C:\Program Files\Java\jre6
java.vm.info=mixed mode
os.version=6.0
path.separator=;
connection.password=123456
java.vm.version=20.13-b02
hibernate.connection.password=123456
user.variant=
java.awt.printerjob=sun.awt.windows.WPrinterJob
sun.io.unicode.encoding=UnicodeLittle
awt.toolkit=sun.awt.windows.WToolkit
hibernate.connection.username=sa
package.definition=sun.,java.,org.apache.catalina.,org.a...
java.naming.factory.url.pkgs=org.apache.naming
user.home=C:\
java.specification.vendor=Sun Microsystems Inc.
java.library.path=C:\Program Files\Apache Software Foun...
java.vendor.url=http://java.sun.com/
hibernate.connection.driver_class=com.microsoft.sqlserver.jdbc.SQLServe...
connection.username=sa
java.vm.vendor=Sun Microsystems Inc.
hibernate.dialect=org.hibernate.dialect.SQLServerDialect
common.loader=${catalina.base}/lib,${catalina.base}...
java.runtime.name=Java(TM) SE Runtime Environment
java.class.path=C:\Program Files\Apache Software Foun...
hibernate.bytecode.use_reflection_optimizer=false
java.vm.specification.name=Java Virtual Machine Specification
java.vm.specification.version=1.0
catalina.home=C:\Program Files\Apache Software Foun...
sun.cpu.endian=little
sun.os.patch.level=Service Pack 2
java.io.tmpdir=C:\Program Files\Apache Software Foun...
java.vendor.url.bug=http://java.sun.com/cgi-bin/bugreport...
server.loader=
os.arch=amd64
java.awt.graphicsenv=sun.awt.Win32GraphicsEnvironment
myeclipse.connection.profile=sql server
java.ext.dirs=C:\Program Files\Java\jre6\lib\ext;C:...
user.dir=C:\Program Files\Apache Software Foun...
line.separator=
java.vm.name=Java HotSpot(TM) 64-Bit Server VM
hibernate.myeclipse.connection.profile=sql server
file.encoding=GBK
java.specification.version=1.6
hibernate.show_sql=true
漏洞证明:
修复方案:
升级
版权声明:转载请注明来源 Anonymous@乌云
漏洞回应
厂商回应:
危害等级:中
漏洞Rank:7
确认时间:2013-06-23 23:32
厂商回复:
最新状态:
暂无