乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2014-06-14: 细节已通知厂商并且等待厂商处理中 2014-06-15: 厂商已经确认,细节仅向厂商公开 2014-06-25: 细节向核心白帽子及相关领域专家公开 2014-07-05: 细节向普通白帽子公开 2014-07-15: 细节向实习白帽子公开 2014-07-29: 细节向公众公开
UC敏感信息泄露(打包)
1.Apache设置不严,暴露server-statushttp://117.135.151.44/server-status
Srv PID Acc M CPU SS Req Conn Child Slot Client VHost Request0-0 - 0/0/24020 . 122.86 17262158 420 0.0 0.00 5.34 113.116.46.192 127.0.0.1 NULL0-0 - 0/0/23776 . 122.81 17262460 0 0.0 0.00 5.19 117.136.32.240 127.0.0.1 POST /uccommon/ HTTP/1.10-0 - 0/0/24500 . 122.78 17262460 140 0.0 0.00 5.44 117.136.6.182 127.0.0.1 POST /uccommon/ HTTP/1.10-0 8489 0/0/23412 W 76.23 17282022 0 0.0 0.00 5.18 183.155.68.59 127.0.0.1 POST /uccommon/ HTTP/1.10-0 - 0/0/24182 . 122.71 17262460 20 0.0 0.00 5.41 113.227.4.177 127.0.0.1 POST /uccommon/ HTTP/1.10-0 8489 0/0/23275 W 76.27 17282022 0 0.0 0.00 5.17 111.121.35.104 127.0.0.1 POST /uccommon/ HTTP/1.10-0 - 0/0/24282 . 122.81 17262432 300 0.0 0.00 5.28 117.136.16.221 127.0.0.1 NULL0-0 - 0/0/24647 . 122.83 17262299 100 0.0 0.00 5.45 117.136.32.130 127.0.0.1 NULL0-0 - 0/0/23907 . 122.71 17262460 26 0.0 0.00 5.28 202.100.87.63 127.0.0.1 POST /uccommon/ HTTP/1.10-0 - 0/0/24362 . 122.75 17262460 8 0.0 0.00 5.31 117.136.34.66 127.0.0.1 POST /uccommon/ HTTP/1.10-0 - 0/0/24291 . 122.74 17262460 273 0.0 0.00 5.31 117.136.35.100 127.0.0.1 POST /uccommon/ HTTP/1.10-0 - 0/0/23827 . 122.72 17262460 7 0.0 0.00 5.29 211.137.199.4 127.0.0.1 POST /uccommon/ HTTP/1.00-0 - 0/0/24187 . 122.71 17262460 7 0.0 0.00 5.34 219.148.140.64 127.0.0.1 POST /uccommon/ HTTP/1.1
2.http://117.135.151.41/status
Active connections: 5 server accepts handled requests 794235 794235 4016551 Reading: 1 Writing: 1 Waiting: 3
3.http://117.135.151.245:80/status
Active connections: 1 server accepts handled requests 10703692 10703692 11715675 Reading: 0 Writing: 1 Waiting: 0
4.http://8.37.228.171/info
Configuration File (php.ini) Path /usr/local/libLoaded Configuration File /usr/local/lib/php.iniHostname:Port localhost.ucfly.com:8010SCRIPT_FILENAME /home/nemo/apache/htdocs/info.phpSERVER_ADDR 10.36.106.48SERVER_ADMIN nemo@mob35SERVER_NAME localhost.ucfly.comSERVER_PORT 8010
参考:http://drops.wooyun.org/papers/410
危害等级:中
漏洞Rank:10
确认时间:2014-06-15 15:11
漏洞存在,已联系相关人员处理,谢谢!
暂无