乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2015-02-13: 细节已通知厂商并且等待厂商处理中 2015-02-15: 厂商已经确认,细节仅向厂商公开 2015-02-25: 细节向核心白帽子及相关领域专家公开 2015-03-07: 细节向普通白帽子公开 2015-03-17: 细节向实习白帽子公开 2015-03-30: 细节向公众公开
*遗留问题*
0x1:http://www.wulmq.12306.cn:7001/Dzsw/Shky/hwky.nei/productdesfwzn.action
root
Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN tcp 0 0 10.224.15.31:7001 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:7001 0.0.0.0:* LISTEN tcp 0 0 127.0.0.2:7001 0.0.0.0:* LISTEN tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN tcp 0 0 0.0.0.0:38888 0.0.0.0:* LISTEN tcp 0 0 10.224.15.31:7001 120.71.102.19:19197 TIME_WAIT tcp 0 0 10.224.15.31:7001 120.71.102.19:19190 TIME_WAIT tcp 0 0 10.224.15.31:56816 10.224.15.32:1521 TIME_WAIT tcp 0 0 10.224.15.31:7001 59.53.182.49:63126 TIME_WAIT tcp 0 1 10.224.15.31:7001 120.71.102.19:19201 LAST_ACK tcp 0 0 10.224.15.31:56811 10.224.15.32:1521 TIME_WAIT tcp 0 0 10.224.15.31:7001 120.71.102.19:18950 TIME_WAIT tcp 0 0 10.224.15.31:7001 59.53.182.49:63122 ESTABLISHED tcp 0 1 10.224.15.31:60066 174.128.255.228:36000 SYN_SENT tcp 0 0 10.224.15.31:47714 10.224.15.32:1521 ESTABLISHED tcp 0 0 10.224.15.31:7001 59.53.182.49:63394 FIN_WAIT2 tcp 0 0 10.224.15.31:56818 10.224.15.32:1521 ESTABLISHED tcp 0 0 10.224.15.31:7001 66.249.69.103:56268 ESTABLISHED tcp 0 0 10.224.15.31:7001 59.53.182.49:63264 ESTABLISHED tcp 0 0 10.224.15.31:7001 120.71.102.19:18965 TIME_WAIT tcp 0 0 10.224.15.31:7001 66.249.69.119:57710 ESTABLISHED tcp 0 0 10.224.15.31:56810 10.224.15.32:1521 TIME_WAIT tcp 0 1 10.224.15.31:7001 120.71.102.19:19199 LAST_ACK tcp 0 1 10.224.15.31:7001 120.71.102.19:19200 LAST_ACK tcp 0 1 10.224.15.31:7001 120.71.102.19:19198 LAST_ACK udp 0 0 0.0.0.0:832 0.0.0.0:* udp 0 0 0.0.0.0:111 0.0.0.0:* udp 0 0 0.0.0.0:631 0.0.0.0:* Active UNIX domain sockets (servers and established)Proto RefCnt Flags Type State I-Node Pathunix 2 [ ACC ] STREAM LISTENING 19113727 /tmp/unique/org.gnome.MainMenu.:0.0.17754unix 2 [ ACC ] STREAM LISTENING 8056 /var/run/nscd/socketunix 2 [ ACC ] STREAM LISTENING 6330 @/var/run/hald/dbus-E6tyMLL8rxunix 2 [ ACC ] STREAM LISTENING 21062 /tmp/unique/org.gnome.VolumeControlApplet.:0.0.17677unix 2 [ ACC ] STREAM LISTENING 19727 /tmp/scim-panel-socket:0-rootunix 2 [ ACC ] STREAM LISTENING 19780 @/tmp/dbus-7Kj8hnUMsMunix 2 [ ACC ] STREAM LISTENING 6044 /var/run/dbus/system_bus_socketunix 2 [ ACC ] STREAM LISTENING 8805 public/cleanupunix 2 [ ACC ] STREAM LISTENING 8812 private/rewriteunix 2 [ ACC ] STREAM LISTENING 8816 private/bounceunix 2 [ ACC ] STREAM LISTENING 8820 private/deferunix 2 [ ACC ] STREAM LISTENING 8824 private/traceunix 2 [ ACC ] STREAM LISTENING 8828 private/verifyunix 2 [ ACC ] STREAM LISTENING 8832 public/flushunix 2 [ ACC ] STREAM LISTENING 8836 private/proxymapunix 2 [ ACC ] STREAM LISTENING 8840 private/smtpunix 2 [ ACC ] STREAM LISTENING 8844 pr
0x2:http://www.lanzh.12306.cn/Dzsw/Shky/hwky.nei/dbwd.action存在S2-019漏洞
权限:root路径: /app/Oracle/Middleware/user_projects/domains/hwky_domain/servers/AdminServer/stage/hwky.nei/hwky.nei
0x3:http://www.nann.12306.cn/Dzsw/Shky/hwky.nei/qiyejianjiegywm.action
Active Internet connections (including servers)Proto Recv-Q Send-Q Local Address Foreign Address (state)tcp4 0 0 *.13 *.* LISTENtcp 0 0 *.21 *.* LISTENtcp 0 0 *.23 *.* LISTENtcp4 0 0 *.25 *.* LISTENtcp4 0 0 *.37 *.* LISTENtcp4 0 0 *.111 *.* LISTENtcp 0 0 *.199 *.* LISTENtcp 0 0 *.427 *.* LISTENtcp 0 0 *.512 *.* LISTENtcp 0 0 *.513 *.* LISTENtcp 0 0 *.514 *.* LISTENtcp 0 0 10.190.7.50.65443 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.65448 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.65452 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.43069 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.43124 10.190.13.83.9500 ESTABLISHEDtcp 0 0 *.5988 *.* LISTENtcp 0 0 *.5989 *.* LISTENtcp4 0 0 *.6112 *.* LISTENtcp 0 0 *.6181 *.* LISTENtcp 0 0 *.6988 *.* LISTENtcp4 0 0 *.32768 *.* LISTENtcp 0 0 *.32769 *.* LISTENtcp4 0 0 *.32770 *.* LISTENtcp4 0 0 *.32771 *.* LISTENtcp4 0 0 *.32772 *.* LISTENtcp 0 0 10.190.7.50.49002 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.49003 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.49006 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.49008 10.190.13.83.9500 ESTABLISHEDtcp6 0 0 ::1.9001 *.* LISTENtcp4 0 0 10.190.7.50.7002 10.190.7.36.29122 ESTABLISHEDtcp 0 0 10.190.7.50.34662 10.190.7.41.1521 ESTABLISHEDtcp 0 0 10.190.7.50.34663 10.190.7.41.1521 ESTABLISHEDtcp4 0 0 10.190.7.50.9001 10.190.7.36.29138 FIN_WAIT_2tcp4 0 0 10.190.7.50.9001 10.190.7.37.29164 ESTABLISHEDtcp 0 0 127.0.0.1.9001 *.* LISTENtcp4 0 0 *.38888 *.* LISTENtcp4 0 0 10.190.7.50.38888 10.190.7.51.2380 ESTABLISHEDtcp 0 0 10.190.7.50.60113 10.190.7.49.7001 ESTABLISHEDtcp 0 0 10.190.7.50.60144 10.190.7.49.7002 ESTABLISHEDtcp 0 0 *.16191 *.* LISTENtcp 0 0 10.190.7.50.33107 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.7002 *.* LISTENtcp 0 0 10.190.7.50.34298 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.9001 *.* LISTENtcp 0 0 10.190.7.50.36709 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.38380 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.38643 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.38644 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.38680 10.190.13.83.9500 ESTABLISHEDtcp 0 0 10.190.7.50.38681 10.190.13.83.
危害等级:中
漏洞Rank:9
确认时间:2015-02-15 08:29
正在修复,谢谢。
暂无