漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2012-012265
漏洞标题:好乐买购物网站DNS域传送漏洞
相关厂商:好乐买
漏洞作者: 艾特绅
提交时间:2012-09-16 12:11
修复时间:2012-10-31 12:12
公开时间:2012-10-31 12:12
漏洞类型:网络敏感信息泄漏
危害等级:中
自评Rank:5
漏洞状态:未联系到厂商或者厂商积极忽略
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2012-09-16: 积极联系厂商并且等待厂商认领中,细节不对外公开
2012-10-31: 厂商已经主动忽略漏洞,细节向公众公开
简要描述:
okbuy.com DNS服务器配置不当,导致所有域名dns泄露,因此很有可能通过DNS域问题来间接获得更多敏感信息,进一步渗入
详细说明:
漏洞证明:
okbuy.com 86400 IN SOA
okbuy.com 86400 IN NS
okbuy.com 86400 IN NS
okbuy.com 86400 IN A 123.103.16.188
okbuy.com 86400 IN MX
okbuy.com 86400 IN MX
okbuy.com 86400 IN TXT
*.okbuy.com 1200 IN A 123.103.16.188
3g.okbuy.com 1200 IN A 123.103.16.136
alipay.okbuy.com 1200 IN A 123.103.16.143
api.okbuy.com 7200 IN A 123.103.16.189
apitest.okbuy.com 7200 IN A 219.237.242.236
c.okbuy.com 1200 IN A 123.103.16.136
corp.okbuy.com 86400 IN NS
corp.okbuy.com 86400 IN NS
cps.okbuy.com 1200 IN A 123.103.16.142
i.okbuy.com 7200 IN A 123.103.16.185
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
letter.okbuy.com 86400 IN NS
letter.okbuy.com 86400 IN NS
logistics.okbuy.com 7200 IN A 123.103.16.186
m.okbuy.com 86400 IN NS
m.okbuy.com 86400 IN NS
m.okbuy.com 1200 IN A 123.103.16.136
mail.okbuy.com 86400 IN CNAME
mapi.okbuy.com 1200 IN A 123.103.16.136
mapitest.okbuy.com 1200 IN A 123.103.16.136
mdev.okbuy.com 1200 IN A 123.103.16.136
mtest.okbuy.com 1200 IN A 123.103.16.136
mums.okbuy.com 1200 IN A 172.16.88.49
mumstest.okbuy.com 1200 IN A 172.16.88.132
newsletter.okbuy.com 7200 IN A 61.147.84.45
newsletter.okbuy.com 86400 IN MX
newsletter.okbuy.com 86400 IN TXT
ns1.okbuy.com 86400 IN A 123.103.16.133
ns2.okbuy.com 86400 IN A 123.103.16.132
open.okbuy.com 1200 IN A 123.103.16.138
pandora.okbuy.com 86400 IN NS
pandora.okbuy.com 86400 IN NS
partner.okbuy.com 1200 IN A 123.103.16.141
platform.okbuy.com 1200 IN A 123.103.16.138
360buy.platform.okbuy.com 1200 IN A 123.103.16.144
amazon.platform.okbuy.com 1200 IN A 123.103.16.144
filestorage.platform.okbuy.com 1200 IN A 123.103.16.140
ifilestorage.platform.okbuy.com 1200 IN A 172.16.88.217
intra.platform.okbuy.com 1200 IN A 172.16.88.241
monitor.platform.okbuy.com 1200 IN A 172.16.88.199
paipai.platform.okbuy.com 1200 IN A 123.103.16.144
qmall.platform.okbuy.com 1200 IN A 123.103.16.144
taobao.platform.okbuy.com 1200 IN A 123.103.16.144
tb.platform.okbuy.com 1200 IN A 123.103.16.144
tenpay.platform.okbuy.com 1200 IN A 123.103.16.144
upload.platform.okbuy.com 1200 IN A 123.103.16.140
yhd.platform.okbuy.com 1200 IN A 123.103.16.144
s.okbuy.com 1200 IN A 123.103.16.138
static.okbuy.com 7200 IN A 123.103.16.188
static3.okbuy.com 1200 IN A 123.103.16.188
stats.okbuy.com 7200 IN A 123.103.16.188
tenpayftp.okbuy.com 7200 IN A 123.103.16.189
vpn.okbuy.com 7200 IN A 219.237.242.153
wap.okbuy.com 1200 IN A 123.103.16.136
www.okbuy.com 7200 IN A 123.103.16.188
ns2.okbuy.com Bind Version:
Trying Zone Transfer for okbuy.com on ns1.okbuy.com ...
okbuy.com 86400 IN SOA
okbuy.com 86400 IN NS
okbuy.com 86400 IN NS
okbuy.com 86400 IN A 123.103.16.188
okbuy.com 86400 IN MX
okbuy.com 86400 IN MX
okbuy.com 86400 IN TXT
*.okbuy.com 1200 IN A 123.103.16.188
3g.okbuy.com 1200 IN A 123.103.16.136
alipay.okbuy.com 1200 IN A 123.103.16.143
api.okbuy.com 7200 IN A 123.103.16.189
apitest.okbuy.com 7200 IN A 219.237.242.236
c.okbuy.com 1200 IN A 123.103.16.136
corp.okbuy.com 86400 IN NS
corp.okbuy.com 86400 IN NS
cps.okbuy.com 1200 IN A 123.103.16.142
i.okbuy.com 7200 IN A 123.103.16.185
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
intra.okbuy.com 3600 IN NS
letter.okbuy.com 86400 IN NS
letter.okbuy.com 86400 IN NS
logistics.okbuy.com 7200 IN A 123.103.16.186
m.okbuy.com 86400 IN NS
m.okbuy.com 86400 IN NS
m.okbuy.com 1200 IN A 123.103.16.136
mail.okbuy.com 86400 IN CNAME
mapi.okbuy.com 1200 IN A 123.103.16.136
mapitest.okbuy.com 1200 IN A 123.103.16.136
mdev.okbuy.com 1200 IN A 123.103.16.136
mtest.okbuy.com 1200 IN A 123.103.16.136
mums.okbuy.com 1200 IN A 172.16.88.49
mumstest.okbuy.com 1200 IN A 172.16.88.132
newsletter.okbuy.com 7200 IN A 61.147.84.45
newsletter.okbuy.com 86400 IN MX
newsletter.okbuy.com 86400 IN TXT
ns1.okbuy.com 86400 IN A 123.103.16.133
ns2.okbuy.com 86400 IN A 123.103.16.132
open.okbuy.com 1200 IN A 123.103.16.138
pandora.okbuy.com 86400 IN NS
pandora.okbuy.com 86400 IN NS
partner.okbuy.com 1200 IN A 123.103.16.141
platform.okbuy.com 1200 IN A 123.103.16.138
360buy.platform.okbuy.com 1200 IN A 123.103.16.144
amazon.platform.okbuy.com 1200 IN A 123.103.16.144
filestorage.platform.okbuy.com 1200 IN A 123.103.16.140
ifilestorage.platform.okbuy.com 1200 IN A 172.16.88.217
intra.platform.okbuy.com 1200 IN A 172.16.88.241
monitor.platform.okbuy.com 1200 IN A 172.16.88.199
paipai.platform.okbuy.com 1200 IN A 123.103.16.144
qmall.platform.okbuy.com 1200 IN A 123.103.16.144
taobao.platform.okbuy.com 1200 IN A 123.103.16.144
tb.platform.okbuy.com 1200 IN A 123.103.16.144
tenpay.platform.okbuy.com 1200 IN A 123.103.16.144
upload.platform.okbuy.com 1200 IN A 123.103.16.140
yhd.platform.okbuy.com 1200 IN A 123.103.16.144
s.okbuy.com 1200 IN A 123.103.16.138
static.okbuy.com 7200 IN A 123.103.16.188
static3.okbuy.com 1200 IN A 123.103.16.188
stats.okbuy.com 7200 IN A 123.103.16.188
tenpayftp.okbuy.com 7200 IN A 123.103.16.189
vpn.okbuy.com 7200 IN A 219.237.242.153
wap.okbuy.com 1200 IN A 123.103.16.136
www.okbuy.com 7200 IN A 123.103.16.188
修复方案:
版权声明:转载请注明来源 艾特绅@乌云
漏洞回应
厂商回应:
未能联系到厂商或者厂商积极拒绝