泡泡网DNS域传递问题 | wooyun-2010-0986| WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2010-0986

漏洞标题：泡泡网DNS域传递问题

漏洞作者： slashapp

提交时间：2010-12-17 16:28

修复时间：2010-12-17 16:46

公开时间：2010-12-17 16:46

漏洞类型：网络敏感信息泄漏

危害等级：低

自评Rank：5

漏洞状态：未联系到厂商或者厂商积极忽略

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2010-12-17：积极联系厂商并且等待厂商认领中，细节不对外公开
2010-12-17：厂商已经主动忽略漏洞，细节向公众公开

简要描述：

域传送

详细说明：

漏洞证明：

> ls pcpop.com
[ns2.pcpop.com]
 pcpop.com.                     NS     server = ns1.pcpop.com
 pcpop.com.                     NS     server = ns2.pcpop.com
 3                              A      221.192.136.202
 331                            A      221.192.136.100
 a                              A      221.192.136.246
 *.a                            A      221.192.136.246
 2008.a                         A      221.192.136.245
 4s.a                           A      221.192.136.246
 admin.a                        A      221.192.136.246
 car.a                          A      221.192.136.217
 club.a                         A      221.192.136.170
 tv.a                           A      221.192.136.170
 www.a                          A      221.192.136.245
 ad                             A      221.192.136.202
 ad2                            A      221.192.136.202
 ad3                            A      221.192.136.149
 ad4                            A      221.192.136.148
 ah                             A      221.192.136.202
 *.ah                           A      221.192.136.202
 aio                            A      221.192.136.202
 AMD3X3                         A      221.192.136.202
 app                            A      221.192.136.157
 ati                            A      221.192.136.202
 banner                         A      221.192.136.202
 baojia                         A      221.192.136.188
 bbs                            A      221.192.136.234
 anhui.bbs                      A      221.192.136.27
 hebei.bbs                      A      221.192.136.27
 houtai.bbs                     A      221.192.136.60
 img.bbs                        A      221.192.136.133
 old.bbs                        A      221.192.136.102
 bbs2                           A      221.192.136.102
 bbsdown                        A      221.192.136.133
 bbsimg                         A      221.192.136.133
 benq                           A      221.192.136.202
 www.benq                       A      221.192.136.202
 bijiben                        A      221.192.136.202
 bj                             A      221.192.136.202
 bj2006                         A      221.192.136.245
 blog                           A      221.192.136.105
 bqq                            A      219.141.178.5
 careland                       A      221.192.136.202
 cdm                            A      221.192.136.127
 cg                             A      221.192.136.148
 channel                        A      221.192.136.39
 club                           A      221.192.136.105
 comment                        A      221.192.136.202
 comment2                       A      221.192.136.202
 comment3                       A      221.192.136.188
 cool                           A      221.192.136.149
 count                          A      221.192.136.157
 cq                             A      221.192.136.202
 *.cq                           A      221.192.136.202
 crt                            A      221.192.136.202
 cs                             A      121.28.95.19
 d                              A      221.192.136.202
 d1                             A      221.192.136.74
 d1                             A      221.192.136.75
 daili                          A      221.192.136.202
 ddz                            A      221.192.136.202
 dealer                         A      221.192.136.39
 desk                           A      221.192.136.148
 dianping                       A      221.192.136.38
 dod                            A      121.28.95.19
 down1                          A      221.192.136.133
 down2                          A      221.192.136.133
 down3                          A      221.192.136.133
 down4                          A      221.192.136.133
 download                       A      221.192.136.202
 dx1                            A      61.160.192.132
 e                              A      221.192.136.202
 edit                           A      221.192.136.247
 editorchoice                   A      221.192.136.202
 epc                            A      221.192.136.202
 f1                             A      219.148.35.83
 fan                            A      121.28.95.19
 fanqie                         A      221.192.136.202
 fj                             A      221.192.136.202
 *.fj                           A      221.192.136.202
 g                              A      221.192.136.202
 game                           A      221.192.136.202
 gtx460                         A      221.192.136.202
 gtx480                         A      221.192.136.202
 gz                             A      221.192.136.202
 *.gz                           A      221.192.136.202
 haocai                         A      221.192.136.202
 hard                           A      221.192.136.202
 hb                             A      221.192.136.202
 *.hb                           A      221.192.136.202
 hdtv                           A      221.192.136.202
 hebei                          A      221.192.136.202
 *.hebei                        A      221.192.136.202
 help                           A      221.192.136.127
 hn                             A      221.192.136.202
 *.hn                           A      221.192.136.202
 hptools                        A      219.148.35.18
 hr                             A      61.55.167.46
 hslj                           A      221.192.136.202
 hun                            A      221.192.136.202
 *.hun                          A      221.192.136.202
 i                              A      221.192.136.60
 icafe                          A      221.192.136.202
 icm                            A      221.192.136.163
 idea                           A      221.192.136.202
 ideabbs                        A      221.192.136.27
 img                            A      61.55.135.167
 img1                           A      61.55.135.167
 img21                          A      221.192.136.195
 img31                          A      221.192.136.195
 img4                           A      221.192.136.74
 img4                           A      221.192.136.75
 img41                          A      221.192.136.202
 img51                          A      221.192.136.195
 imgpv                          A      221.192.136.180
 imgs                           A      221.192.136.252
 ipad001                        A      221.192.136.202
 iphone                         A      221.192.136.202
 iphone4                        A      221.192.136.202
 joke                           A      221.192.136.148
 js                             A      221.192.136.149
 jsu                            A      221.192.136.202
 *.jsu                          A      221.192.136.202
 life                           A      221.192.136.202
 live                           A      221.192.136.211
 lixiang                        A      221.192.136.245
 admin.lixiang                  A      221.192.136.245
 ln                             A      221.192.136.202
 *.ln                           A      221.192.136.202
 ly                             A      221.192.136.202
 *.ly                           A      221.192.136.202
 mall                           A      221.192.136.202
 market                         A      221.192.136.202
 mid                            A      221.192.136.202
 movie                          A      221.192.136.202
 mv                             A      221.192.136.148
 my                             A      221.192.136.60
 nclub                          A      221.192.136.202
 netgame                        A      221.192.136.202
 newbbs                         A      221.192.136.234
 ningbo                         A      221.192.136.202
 *.ningbo                       A      221.192.136.202
 ns1                            A      221.192.136.150
 ns2                            A      219.148.35.66
 nvidiaclub                     A      221.192.136.202
 office                         A      221.192.136.202
 p                              A      219.148.35.91
 pad                            A      221.192.136.202
 pao                            A      221.192.136.27
 paoattach                      A      221.192.136.133
 pcgame                         A      221.192.136.202
 pcmall                         A      221.192.136.202
 pcpop                          A      221.192.136.202
 pf                             A      221.192.136.188
 ph                             A      221.192.136.247
 pic                            A      61.182.160.85
 play                           A      221.192.136.159
 pocketgame                     A      221.192.136.202
 group.pop                      A      221.192.136.38
 houtai.pop                     A      221.192.136.38
 houtai2.pop                    A      221.192.136.38
 tv.pop                         A      59.151.39.39
 popzt                          A      221.192.136.202
 pp                             A      221.192.136.148
 joyo.product                   A      221.192.136.127
 pic.product                    A      221.192.136.247
 play.product                   A      221.192.136.159
 pp.product                     A      221.192.136.148
 product2                       A      221.192.136.148
 publish                        A      221.192.136.247
 publish2                       A      221.192.136.205
 pvcount                        A      221.192.136.148
 q                              A      221.192.136.202
 qd                             A      221.192.136.202
 *.qd                           A      221.192.136.202
 qh                             A      221.192.136.202
 *.qh                           A      221.192.136.202
 refresh                        A      221.192.136.202
 ren                            A      221.192.136.246
 rtx                            A      219.141.178.5
 s1                             A      60.28.208.249
 sanguo                         A      221.192.136.202
 sc                             A      221.192.136.202
 *.sc                           A      221.192.136.202
 script                         A      221.192.136.202
 sd                             A      221.192.136.202
 *.sd                           A      221.192.136.202
 sf                             A      221.192.136.74
 sf                             A      221.192.136.75
 sh                             A      221.192.136.202
 shanxi                         A      221.192.136.202
 *.shanxi                       A      221.192.136.202
 *.shop                         A      221.192.136.39
 cnc.shop                       A      221.192.136.39
 com.shop                       A      219.148.35.83
 shouji                         A      221.192.136.202
 bbs.smb                        A      221.192.136.202
 so                             A      221.192.136.114
 softbbs                        A      221.192.136.103
 img.softbbs                    A      221.192.136.133
 solution                       A      221.192.136.202
 sony                           A      221.192.136.202
 sound                          A      221.192.136.202
 soundbox                       A      221.192.136.202
 spms                           A      221.192.136.144
 squid                          A      221.192.136.47
 squid2                         A      221.192.136.46
 sso                            A      221.192.136.60
 study                          A      221.192.136.202
 svn                            A      10.168.0.78
 sx                             A      221.192.136.202
 *.sx                           A      221.192.136.202
 sz                             A      221.192.136.202
 taobao                         A      221.192.136.148
 tax                            A      221.192.136.127
 tel                            A      221.192.136.202
 telcom                         A      221.192.136.202
 test                           A      221.192.136.202
 test1                          A      221.192.136.180
 test2                          A      221.192.136.180
 test3                          A      221.192.136.180
 test4                          A      221.192.136.15
 test5                          A      221.192.136.184
 testwap                        A      221.192.136.15
 tj                             A      221.192.136.202
 *.tj                           A      221.192.136.202
 tomatolei                      A      221.192.136.202
 topic                          A      221.192.136.202
 topicsubmit                    A      221.192.136.202
 toppc                          A      221.192.136.202
 tuan                           A      221.192.136.27
 img.tuan                       A      221.192.136.27
 img1.tuan                      A      221.192.136.133
 tvgame                         A      221.192.136.202
 twsz                           A      221.192.136.202
 uc                             A      221.192.136.27
 vga                            A      221.192.136.202
 vip                            A      202.106.124.55
 vista                          A      221.192.136.202
 vod                            A      221.192.136.148
 vote                           A      221.192.136.215
 vv                             A      221.192.136.202
 wap                            A      221.192.136.188
 win7                           A      221.192.136.202
 www1                           A      221.192.136.202
 xcard                          A      221.192.136.202
 yn                             A      221.192.136.202
 *.yn                           A      221.192.136.202
 zj                             A      221.192.136.202
 *.zj                           A      221.192.136.202
 ztc                            A      221.192.136.174

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2010-0986

漏洞标题：泡泡网DNS域传递问题

相关厂商：pcpop.com

漏洞作者： slashapp

提交时间：2010-12-17 16:28

修复时间：2010-12-17 16:46

公开时间：2010-12-17 16:46

漏洞类型：网络敏感信息泄漏

危害等级：低

自评Rank：5

漏洞状态：未联系到厂商或者厂商积极忽略

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 slashapp@乌云

漏洞回应

厂商回应：

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2010-0986

漏洞标题：泡泡网DNS域传递问题

相关厂商：pcpop.com

漏洞作者： slashapp

提交时间：2010-12-17 16:28

修复时间：2010-12-17 16:46

公开时间：2010-12-17 16:46

漏洞类型：网络敏感信息泄漏

危害等级：低

自评Rank：5

漏洞状态：未联系到厂商或者厂商积极忽略

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2010-0986"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 slashapp@乌云

漏洞回应

厂商回应：

漏洞概要关注数(24) 关注此漏洞

Tags标签：无

4人收藏收藏
分享漏洞：