漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2015-0159014
漏洞标题:欧尚DNS域传送
相关厂商:http;
漏洞作者: 路人甲
提交时间:2015-12-07 13:59
修复时间:2015-12-12 14:00
公开时间:2015-12-12 14:00
漏洞类型:系统/服务运维配置不当
危害等级:低
自评Rank:5
漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2015-12-07: 细节已通知厂商并且等待厂商处理中
2015-12-12: 厂商已经主动忽略漏洞,细节向公众公开
简要描述:
求个邀请码,想深入学习。
详细说明:
root@Yunyan:~# fierce -dns auchan.com.cn
DNS Servers for auchan.com.cn:
ns1.auchan.com.cn
Trying zone transfer first...
Testing ns1.auchan.com.cn
Whoah, it worked - misconfigured DNS server found:
auchan.com.cn. 84600 IN SOA ns1.auchan.com.cn. root.auchan.com.cn. (
20050513 ;serial
3600 ;refresh
900 ;retry
3600000 ;expire
3600 ) ;minimum
auchan.com.cn. 84600 IN NS ns1.auchan.com.cn.
auchan.com.cn. 84600 IN A 222.68.247.59
auchan.com.cn. 84600 IN MX 10 relay1.auchan.com.cn.
auchan.com.cn. 84600 IN MX 20 mail.auchan.com.cn.
www.cloud.auchan.com.cn. 84600 IN A 222.68.247.57
crm-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
crm-pre-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
eshop.auchan.com.cn. 84600 IN A 222.68.247.58
logistics.auchan.com.cn. 84600 IN A 222.68.247.53
mail.auchan.com.cn. 84600 IN A 222.68.247.55
middleoffice.auchan.com.cn. 84600 IN A 222.68.247.52
ns1.auchan.com.cn. 84600 IN A 222.68.247.56
pre-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
relay1.auchan.com.cn. 84600 IN A 222.68.247.54
shoplist-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
sso.auchan.com.cn. 84600 IN CNAME www.auchan.com.cn.
val.auchan.com.cn. 84600 IN A 202.136.213.121
ws-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
ws-pre-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
www.auchan.com.cn. 84600 IN A 222.68.247.59
There isn't much point continuing, you have everything.
Have a nice day.
Exiting...
漏洞证明:
root@Yunyan:~# fierce -dns auchan.com.cn
DNS Servers for auchan.com.cn:
ns1.auchan.com.cn
Trying zone transfer first...
Testing ns1.auchan.com.cn
Whoah, it worked - misconfigured DNS server found:
auchan.com.cn. 84600 IN SOA ns1.auchan.com.cn. root.auchan.com.cn. (
20050513 ;serial
3600 ;refresh
900 ;retry
3600000 ;expire
3600 ) ;minimum
auchan.com.cn. 84600 IN NS ns1.auchan.com.cn.
auchan.com.cn. 84600 IN A 222.68.247.59
auchan.com.cn. 84600 IN MX 10 relay1.auchan.com.cn.
auchan.com.cn. 84600 IN MX 20 mail.auchan.com.cn.
www.cloud.auchan.com.cn. 84600 IN A 222.68.247.57
crm-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
crm-pre-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
eshop.auchan.com.cn. 84600 IN A 222.68.247.58
logistics.auchan.com.cn. 84600 IN A 222.68.247.53
mail.auchan.com.cn. 84600 IN A 222.68.247.55
middleoffice.auchan.com.cn. 84600 IN A 222.68.247.52
ns1.auchan.com.cn. 84600 IN A 222.68.247.56
pre-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
relay1.auchan.com.cn. 84600 IN A 222.68.247.54
shoplist-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
sso.auchan.com.cn. 84600 IN CNAME www.auchan.com.cn.
val.auchan.com.cn. 84600 IN A 202.136.213.121
ws-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
ws-pre-middleoffice.auchan.com.cn. 84600 IN CNAME middleoffice.auchan.com.cn.
www.auchan.com.cn. 84600 IN A 222.68.247.59
There isn't much point continuing, you have everything.
Have a nice day.
Exiting...
修复方案:
通过访问控制定义ACL(访问控制列表)来限制在域名服务器之间的区域传送。
版权声明:转载请注明来源 路人甲@乌云
漏洞回应
厂商回应:
危害等级:无影响厂商忽略
忽略时间:2015-12-12 14:00
厂商回复:
最新状态:
暂无