顺丰快递dns域传送-2 | wooyun-2012-015604| WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-015604

漏洞标题：顺丰快递dns域传送-2

漏洞作者： VIP

提交时间：2012-12-04 16:43

修复时间：2013-01-18 16:44

公开时间：2013-01-18 16:44

漏洞类型：敏感信息泄露

危害等级：中

自评Rank：10

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2012-12-04：细节已通知厂商并且等待厂商处理中
2012-12-04：厂商已经确认，细节仅向厂商公开
2012-12-14：细节向核心白帽子及相关领域专家公开
2012-12-24：细节向普通白帽子公开
2013-01-03：细节向实习白帽子公开
2013-01-18：细节向公众公开

简要描述：

顺丰快递真快！

详细说明：

顺丰快递的一台dns服务器ns3.diyixian.com配置不当，导致dns域传送

Microsoft Windows XP [版本 5.1.2600]
(C) 版权所有 1985-2001 Microsoft Corp.
C:\Documents and Settings\Administrator>nslookup
*** Can't find server name for address 61.235.0.228: Non-existent domain
Default Server:  cache1-sh
Address:  211.98.2.4
> server ns3.diyixian.com
Default Server:  ns3.diyixian.com
Address:  202.134.64.29
> ls sf-express.com
[ns3.diyixian.com]
 sf-express.com.                A      219.134.187.245
 sf-express.com.                NS     server = ns.sf-express.com
 sf-express.com.                NS     server = ns2.sf-express.com
 sf-express.com.                NS     server = ns3.diyixian.com
 accst                          NS     server = nslp.sf-express.com
 aems                           NS     server = nslp.sf-express.com
 aircnc-wrt-vpn                 NS     server = nslp.sf-express.com
 aircnc2vpn                     NS     server = nslp.sf-express.com
 airct-wrt-vpn                  NS     server = nslp.sf-express.com
 airct2vpn                      NS     server = nslp.sf-express.com
 airctvpn                       NS     server = nslp.sf-express.com
 airunvpn                       NS     server = nslp.sf-express.com
 amsfs                          NS     server = nslp.sf-express.com
 asset                          NS     server = nslp.sf-express.com
 asura                          NS     server = nslp.sf-express.com
 asura-bar                      NS     server = nslp.sf-express.com
 asura-easyinput                NS     server = nslp.sf-express.com
 asura-exdata-uat-hq            A      219.134.187.235
 asura-hd                       NS     server = nslp.sf-express.com
 asura-hz                       NS     server = nslp.sf-express.com
 asura-uat-en                   A      121.12.251.26
 asura-uat-hz                   A      219.134.187.136
 asura-uat-rpt                  A      219.134.187.143
 asura-uat-tw                   A      219.134.187.143
 asura1-uat-hq                  A      121.15.169.4
 bbs                            NS     server = nslp.sf-express.com
 bbs-uat                        A      121.12.251.24
 bidding                        NS     server = nslp.sf-express.com
 billing                        NS     server = nslp.sf-express.com
 bip                            NS     server = nslp.sf-express.com
 biptest                        NS     server = nslp.sf-express.com
 biptobo                        NS     server = nslp.sf-express.com
 biz                            NS     server = nslp.sf-express.com
 bms-uat                        A      219.134.187.150
 bsp                            NS     server = nslp.sf-express.com
 bsp-ftp                        NS     server = nslp.sf-express.com
 career                         A      61.129.48.130
 cas                            NS     server = nslp.sf-express.com
 cbs                            NS     server = nslp.sf-express.com
 cbsapp                         NS     server = nslp.sf-express.com
 cds-interface-imp              A      119.145.36.68
 cgs                            NS     server = nslp.sf-express.com
 chgpwd                         NS     server = nslp.sf-express.com
 cnc2wxvpn                      A      221.6.103.115
 crm                            NS     server = nslp.sf-express.com
 crm-uat                        A      61.190.38.158
 crm-uat-gj                     A      121.12.251.27
 csc                            NS     server = nslp.sf-express.com
 cscrpt                         NS     server = nslp.sf-express.com
 cssuat                         A      219.134.187.133
 ct2wxvpn                       A      58.214.20.174
 cthqvpn                        NS     server = nslp.sf-express.com
 ctwxvpn                        A      58.215.194.147
 dc                             A      219.134.187.151
 ddns                           NS     server = ns.ddns.sf-express.com
 ns.ddns                        A      58.61.142.9
 ns.ddns                        A      219.128.48.186
 dep                            A      115.160.146.195
 despatchwbep                   NS     server = nslp.sf-express.com
 download                       NS     server = nslp.sf-express.com
 eas                            NS     server = zslp.sf-express.com
 ecw                            NS     server = nslp.sf-express.com
 eds                            NS     server = nslp.sf-express.com
 edu                            NS     server = nslp.sf-express.com
 ehr                            A      219.134.187.204
 embed                          NS     server = nslp.sf-express.com
 ere                            NS     server = nslp.sf-express.com
 ets                            NS     server = nslp.sf-express.com
 exmail                         NS     server = exmaildns.sf-express.com
 exmaildns                      A      121.15.169.17
 exp                            NS     server = nslp.sf-express.com
 exp4issu                       NS     server = nslp.sf-express.com
 expbak                         NS     server = nslp.sf-express.com
 exptest                        NS     server = nslp.sf-express.com
 foc                            NS     server = nslp.sf-express.com
 ftp1                           NS     server = nslp.sf-express.com
 ftp2                           NS     server = nslp.sf-express.com
 ftp3                           NS     server = nslp.sf-express.com
 gmap                           NS     server = nslp.sf-express.com
 gps                            NS     server = nslp.sf-express.com
 hbjntest                       NS     server = jnlp1.sf-express.com
 hbjntest                       NS     server = jnlp2.sf-express.com
 hbwbep                         NS     server = nslp.sf-express.com
 hdcncvpn                       NS     server = nslp.sf-express.com
 hdcncwrt                       A      220.248.230.137
 hdctvpn                        NS     server = nslp.sf-express.com
 hdctwrt                        A      61.190.38.148
 hddemo                         NS     server = nslp.sf-express.com
 hdwbep                         NS     server = nslp.sf-express.com
 helpdesk                       NS     server = nslp.sf-express.com
 history                        NS     server = zslp.sf-express.com
 hk                             NS     server = nslp.sf-express.com
 hk-ere                         NS     server = nslp.sf-express.com
 hk-oa-vpn                      A      210.5.169.166
 hkere                          NS     server = nslp.sf-express.com
 hkftp2                         A      203.174.60.166
 hkim                           A      202.66.140.169
 hkmail                         A      202.66.140.172
 hkmarketing                    A      202.66.140.166
 hkncs                          A      202.66.140.170
 hkresearch                     A      202.66.140.170
 hkshop                         A      202.66.140.166
 hnwbep                         NS     server = nslp.sf-express.com
 hqcncapvpn                     NS     server = nslp.sf-express.com
 hqcncwrt                       NS     server = nslp.sf-express.com
 hqctapvpn                      NS     server = nslp.sf-express.com
 hqctwrt                        NS     server = nslp.sf-express.com
 hqftp                          NS     server = nslp.sf-express.com
 hqmail                         NS     server = nslp.sf-express.com
 hqqftp                         A      58.61.142.166
 hr                             NS     server = nslp.sf-express.com
 hwwbep                         NS     server = nslp.sf-express.com
 hzcncvpn                       NS     server = nslp.sf-express.com
 hzcncwrt                       A      119.6.15.182
 hzctvpn                        NS     server = nslp.sf-express.com
 hzctwrt                        NS     server = nslp.sf-express.com
 hzwbep                         NS     server = nslp.sf-express.com
 ilearningcontent               NS     server = nslp.sf-express.com
 im                             NS     server = nslp.sf-express.com
 imp                            NS     server = nslp.sf-express.com
 imuat                          A      219.134.187.140
 input                          A      219.134.187.130
 itsm                           A      10.0.26.93
 itsmuat                        A      219.134.187.151
 jme                            NS     server = nslp.sf-express.com
 jnlp1                          A      123.232.118.131
 jnlp2                          A      58.56.58.197
 kf                             NS     server = nslp.sf-express.com
 kr                             A      118.218.217.195
 krmkt                          A      202.66.140.170
 mail                           NS     server = nslp.sf-express.com
 mailtest                       A      10.2.1.18
 mc1000                         NS     server = nslp.sf-express.com
 mdp                            NS     server = nslp.sf-express.com
 mdu-uat                        A      219.134.187.149
 media                          NS     server = nslp.sf-express.com
 meeting                        A      219.134.187.145
 mg1                            NS     server = nslp.sf-express.com
 mg2                            NS     server = nslp.sf-express.com
 mg3                            NS     server = nslp.sf-express.com
 mg4                            NS     server = nslp.sf-express.com
 mg5                            NS     server = nslp.sf-express.com
 mg6                            NS     server = nslp.sf-express.com
 mis                            NS     server = nslp.sf-express.com
 mkt                            A      202.66.140.166
 moa                            NS     server = nslp.sf-express.com
 mobile                         NS     server = nslp.sf-express.com
 nmvideo                        A      113.106.167.20
 ns                             A      202.66.140.173
 ns1                            A      202.66.140.174
 ns2                            A      219.134.187.226
 nslp                           A      210.21.231.62
 nslp                           A      219.128.48.179
 nslp                           A      219.134.187.252
 nslp                           A      221.4.197.52
 ntp                            NS     server = nslp.sf-express.com
 nwms                           NS     server = nslp.sf-express.com
 oa                             NS     server = nslp.sf-express.com
 oa-cnc2vpn                     NS     server = nslp.sf-express.com
 oa-ct2vpn                      NS     server = nslp.sf-express.com
 obs                            NS     server = nslp.sf-express.com
 ocsuat                         A      219.134.187.147
 omp                            NS     server = nslp.sf-express.com
 omp-uat                        A      219.134.187.140
 os-meeting                     A      10.0.26.74
 osftp                          NS     server = nslp.sf-express.com
 osmail                         NS     server = nslp.sf-express.com
 ovpncnc                        NS     server = nslp.sf-express.com
 ovpnct1                        NS     server = nslp.sf-express.com
 ovpnct2                        NS     server = nslp.sf-express.com
 ovpnsrvcnc                     NS     server = nslp.sf-express.com
 ovpnsrvct2                     NS     server = nslp.sf-express.com
 ows                            A      219.134.187.154
 owsuat                         A      219.134.187.146
 pcs                            NS     server = nslp.sf-express.com
 pcs-uat                        A      219.134.187.143
 pop                            A      219.134.187.235
 portal                         NS     server = nslp.sf-express.com
 pos                            NS     server = ns.pos.sf-express.com
 ns.pos                         A      58.61.142.11
 printandgo                     A      115.160.146.195
 r12crp1                        A      219.134.187.148
 sap                            NS     server = nslp.sf-express.com
 scan                           NS     server = nslp.sf-express.com
 sch                            NS     server = nslp.sf-express.com
 sch-cn0205                     NS     server = nslp.sf-express.com
 sch-tb01                       NS     server = nslp.sf-express.com
 sch2                           NS     server = nslp.sf-express.com
 search                         A      219.134.187.235
 ses                            A      219.134.187.229
 sfadp                          A      219.134.187.215
 sfams                          NS     server = nslp.sf-express.com
 sfawb                          A      115.160.146.195
 sfcode                         A      219.128.48.181
 sfec                           A      202.66.140.166
 sffi                           NS     server = nslp.sf-express.com
 sfftp                          NS     server = nslp.sf-express.com
 sfkf                           NS     server = nslp.sf-express.com
 sfkf2                          A      61.160.98.126
 sfmantis                       A      219.134.187.136
 sfmap                          NS     server = nslp.sf-express.com
 sfmap-uat                      A      219.134.187.137
 sfmapapi                       NS     server = nslp.sf-express.com
 sfocs                          NS     server = nslp.sf-express.com
 sfppayment                     A      219.134.187.148
 sfsp                           A      58.214.20.173
 sfssh                          A      219.134.187.132
 sftp                           NS     server = zslp.sf-express.com
 sfvip-uat                      A      219.134.187.139
 sg                             A      115.42.211.32
 sgncs                          A      202.66.140.170
 sgresearch                     A      202.66.140.170
 shvpn                          NS     server = nslp.sf-express.com
 smc                            A      58.61.142.164
 sms                            NS     server = nslp.sf-express.com
 smtp                           A      219.134.187.235
 spefind                        NS     server = nslp.sf-express.com
 sss-ai                         A      219.134.187.133
 sss-cms                        A      219.134.187.133
 sss-gui                        A      219.134.187.133
 sss-uat                        A      219.134.187.131
 steam                          A      219.134.187.207
 stock                          NS     server = nslp.sf-express.com
 sxcx                           NS     server = nslp.sf-express.com
 syt                            NS     server = nslp.sf-express.com
 taoda                          A      202.66.140.170
 tcrm                           NS     server = nslp.sf-express.com
 tempftp                        NS     server = nslp.sf-express.com
 test240                        NS     server = nslp.sf-express.com
 testvpn                        NS     server = nslp.sf-express.com
 testvpn                        A      58.61.142.180
 tslp                           A      219.134.187.137
 tstest                         NS     server = nslp.sf-express.com
 ttt                            NS     server = tslp.sf-express.com
 tw                             A      219.87.80.7
 twncs                          A      202.66.140.170
 twresearch                     A      202.66.140.170
 uat                            A      219.134.187.134
 uat-cbs                        A      219.134.187.131
 uatmobile                      A      219.134.187.152
 uatwap                         A      219.134.187.149
 unhqvpn                        NS     server = nslp.sf-express.com
 unwxvpn                        A      122.193.143.234
 upvideo                        A      113.106.167.19
 video                          A      113.106.167.17
 virus                          NS     server = nslp.sf-express.com
 vms-uat                        A      219.134.187.152
 vpn                            NS     server = nslp.sf-express.com
 vpnhelp                        NS     server = nslp.sf-express.com
 w1                             A      219.134.187.147
 w2                             A      219.134.187.146
 wap                            NS     server = nslp.sf-express.com
 waybill                        NS     server = nslp.sf-express.com
 waybill1                       NS     server = zslp.sf-express.com
 wbcnc2vpn                      NS     server = nslp.sf-express.com
 wbcncvpn                       NS     server = nslp.sf-express.com
 wbct2vpn                       NS     server = nslp.sf-express.com
 wbctvpn                        NS     server = nslp.sf-express.com
 wbep                           NS     server = nslp.sf-express.com
 wbepdd                         A      61.132.128.72
 wbeptrain                      A      219.134.187.144
 webhk2                         A      202.66.140.162
 wsus                           NS     server = nslp.sf-express.com
 www                            NS     server = wwwdns.sf-express.com
 www1                           A      202.66.140.171
 wwwdns                         A      61.190.38.151
 wwwdns                         A      118.122.122.14
 wwwdns                         A      119.6.15.181
 wwwdns                         A      220.248.230.136
 wxcncvpn                       NS     server = nslp.sf-express.com
 wxcncwrt                       A      122.193.143.233
 wxctvpn                        NS     server = nslp.sf-express.com
 wxctwrt                        A      61.160.98.123
 wxlp                           A      61.160.98.123
 wxlp                           A      221.6.103.114
 zcmpart                        NS     server = nslp.sf-express.com
 zslp                           A      219.128.48.189
 zslp                           A      221.4.197.62
>

漏洞证明：

顺丰快递的一台dns服务器ns3.diyixian.com配置不当，导致dns域传送

Microsoft Windows XP [版本 5.1.2600]
(C) 版权所有 1985-2001 Microsoft Corp.
C:\Documents and Settings\Administrator>nslookup
*** Can't find server name for address 61.235.0.228: Non-existent domain
Default Server:  cache1-sh
Address:  211.98.2.4
> server ns3.diyixian.com
Default Server:  ns3.diyixian.com
Address:  202.134.64.29
> ls sf-express.com
[ns3.diyixian.com]
 sf-express.com.                A      219.134.187.245
 sf-express.com.                NS     server = ns.sf-express.com
 sf-express.com.                NS     server = ns2.sf-express.com
 sf-express.com.                NS     server = ns3.diyixian.com
 accst                          NS     server = nslp.sf-express.com
 aems                           NS     server = nslp.sf-express.com
 aircnc-wrt-vpn                 NS     server = nslp.sf-express.com
 aircnc2vpn                     NS     server = nslp.sf-express.com
 airct-wrt-vpn                  NS     server = nslp.sf-express.com
 airct2vpn                      NS     server = nslp.sf-express.com
 airctvpn                       NS     server = nslp.sf-express.com
 airunvpn                       NS     server = nslp.sf-express.com
 amsfs                          NS     server = nslp.sf-express.com
 asset                          NS     server = nslp.sf-express.com
 asura                          NS     server = nslp.sf-express.com
 asura-bar                      NS     server = nslp.sf-express.com
 asura-easyinput                NS     server = nslp.sf-express.com
 asura-exdata-uat-hq            A      219.134.187.235
 asura-hd                       NS     server = nslp.sf-express.com
 asura-hz                       NS     server = nslp.sf-express.com
 asura-uat-en                   A      121.12.251.26
 asura-uat-hz                   A      219.134.187.136
 asura-uat-rpt                  A      219.134.187.143
 asura-uat-tw                   A      219.134.187.143
 asura1-uat-hq                  A      121.15.169.4
 bbs                            NS     server = nslp.sf-express.com
 bbs-uat                        A      121.12.251.24
 bidding                        NS     server = nslp.sf-express.com
 billing                        NS     server = nslp.sf-express.com
 bip                            NS     server = nslp.sf-express.com
 biptest                        NS     server = nslp.sf-express.com
 biptobo                        NS     server = nslp.sf-express.com
 biz                            NS     server = nslp.sf-express.com
 bms-uat                        A      219.134.187.150
 bsp                            NS     server = nslp.sf-express.com
 bsp-ftp                        NS     server = nslp.sf-express.com
 career                         A      61.129.48.130
 cas                            NS     server = nslp.sf-express.com
 cbs                            NS     server = nslp.sf-express.com
 cbsapp                         NS     server = nslp.sf-express.com
 cds-interface-imp              A      119.145.36.68
 cgs                            NS     server = nslp.sf-express.com
 chgpwd                         NS     server = nslp.sf-express.com
 cnc2wxvpn                      A      221.6.103.115
 crm                            NS     server = nslp.sf-express.com
 crm-uat                        A      61.190.38.158
 crm-uat-gj                     A      121.12.251.27
 csc                            NS     server = nslp.sf-express.com
 cscrpt                         NS     server = nslp.sf-express.com
 cssuat                         A      219.134.187.133
 ct2wxvpn                       A      58.214.20.174
 cthqvpn                        NS     server = nslp.sf-express.com
 ctwxvpn                        A      58.215.194.147
 dc                             A      219.134.187.151
 ddns                           NS     server = ns.ddns.sf-express.com
 ns.ddns                        A      58.61.142.9
 ns.ddns                        A      219.128.48.186
 dep                            A      115.160.146.195
 despatchwbep                   NS     server = nslp.sf-express.com
 download                       NS     server = nslp.sf-express.com
 eas                            NS     server = zslp.sf-express.com
 ecw                            NS     server = nslp.sf-express.com
 eds                            NS     server = nslp.sf-express.com
 edu                            NS     server = nslp.sf-express.com
 ehr                            A      219.134.187.204
 embed                          NS     server = nslp.sf-express.com
 ere                            NS     server = nslp.sf-express.com
 ets                            NS     server = nslp.sf-express.com
 exmail                         NS     server = exmaildns.sf-express.com
 exmaildns                      A      121.15.169.17
 exp                            NS     server = nslp.sf-express.com
 exp4issu                       NS     server = nslp.sf-express.com
 expbak                         NS     server = nslp.sf-express.com
 exptest                        NS     server = nslp.sf-express.com
 foc                            NS     server = nslp.sf-express.com
 ftp1                           NS     server = nslp.sf-express.com
 ftp2                           NS     server = nslp.sf-express.com
 ftp3                           NS     server = nslp.sf-express.com
 gmap                           NS     server = nslp.sf-express.com
 gps                            NS     server = nslp.sf-express.com
 hbjntest                       NS     server = jnlp1.sf-express.com
 hbjntest                       NS     server = jnlp2.sf-express.com
 hbwbep                         NS     server = nslp.sf-express.com
 hdcncvpn                       NS     server = nslp.sf-express.com
 hdcncwrt                       A      220.248.230.137
 hdctvpn                        NS     server = nslp.sf-express.com
 hdctwrt                        A      61.190.38.148
 hddemo                         NS     server = nslp.sf-express.com
 hdwbep                         NS     server = nslp.sf-express.com
 helpdesk                       NS     server = nslp.sf-express.com
 history                        NS     server = zslp.sf-express.com
 hk                             NS     server = nslp.sf-express.com
 hk-ere                         NS     server = nslp.sf-express.com
 hk-oa-vpn                      A      210.5.169.166
 hkere                          NS     server = nslp.sf-express.com
 hkftp2                         A      203.174.60.166
 hkim                           A      202.66.140.169
 hkmail                         A      202.66.140.172
 hkmarketing                    A      202.66.140.166
 hkncs                          A      202.66.140.170
 hkresearch                     A      202.66.140.170
 hkshop                         A      202.66.140.166
 hnwbep                         NS     server = nslp.sf-express.com
 hqcncapvpn                     NS     server = nslp.sf-express.com
 hqcncwrt                       NS     server = nslp.sf-express.com
 hqctapvpn                      NS     server = nslp.sf-express.com
 hqctwrt                        NS     server = nslp.sf-express.com
 hqftp                          NS     server = nslp.sf-express.com
 hqmail                         NS     server = nslp.sf-express.com
 hqqftp                         A      58.61.142.166
 hr                             NS     server = nslp.sf-express.com
 hwwbep                         NS     server = nslp.sf-express.com
 hzcncvpn                       NS     server = nslp.sf-express.com
 hzcncwrt                       A      119.6.15.182
 hzctvpn                        NS     server = nslp.sf-express.com
 hzctwrt                        NS     server = nslp.sf-express.com
 hzwbep                         NS     server = nslp.sf-express.com
 ilearningcontent               NS     server = nslp.sf-express.com
 im                             NS     server = nslp.sf-express.com
 imp                            NS     server = nslp.sf-express.com
 imuat                          A      219.134.187.140
 input                          A      219.134.187.130
 itsm                           A      10.0.26.93
 itsmuat                        A      219.134.187.151
 jme                            NS     server = nslp.sf-express.com
 jnlp1                          A      123.232.118.131
 jnlp2                          A      58.56.58.197
 kf                             NS     server = nslp.sf-express.com
 kr                             A      118.218.217.195
 krmkt                          A      202.66.140.170
 mail                           NS     server = nslp.sf-express.com
 mailtest                       A      10.2.1.18
 mc1000                         NS     server = nslp.sf-express.com
 mdp                            NS     server = nslp.sf-express.com
 mdu-uat                        A      219.134.187.149
 media                          NS     server = nslp.sf-express.com
 meeting                        A      219.134.187.145
 mg1                            NS     server = nslp.sf-express.com
 mg2                            NS     server = nslp.sf-express.com
 mg3                            NS     server = nslp.sf-express.com
 mg4                            NS     server = nslp.sf-express.com
 mg5                            NS     server = nslp.sf-express.com
 mg6                            NS     server = nslp.sf-express.com
 mis                            NS     server = nslp.sf-express.com
 mkt                            A      202.66.140.166
 moa                            NS     server = nslp.sf-express.com
 mobile                         NS     server = nslp.sf-express.com
 nmvideo                        A      113.106.167.20
 ns                             A      202.66.140.173
 ns1                            A      202.66.140.174
 ns2                            A      219.134.187.226
 nslp                           A      210.21.231.62
 nslp                           A      219.128.48.179
 nslp                           A      219.134.187.252
 nslp                           A      221.4.197.52
 ntp                            NS     server = nslp.sf-express.com
 nwms                           NS     server = nslp.sf-express.com
 oa                             NS     server = nslp.sf-express.com
 oa-cnc2vpn                     NS     server = nslp.sf-express.com
 oa-ct2vpn                      NS     server = nslp.sf-express.com
 obs                            NS     server = nslp.sf-express.com
 ocsuat                         A      219.134.187.147
 omp                            NS     server = nslp.sf-express.com
 omp-uat                        A      219.134.187.140
 os-meeting                     A      10.0.26.74
 osftp                          NS     server = nslp.sf-express.com
 osmail                         NS     server = nslp.sf-express.com
 ovpncnc                        NS     server = nslp.sf-express.com
 ovpnct1                        NS     server = nslp.sf-express.com
 ovpnct2                        NS     server = nslp.sf-express.com
 ovpnsrvcnc                     NS     server = nslp.sf-express.com
 ovpnsrvct2                     NS     server = nslp.sf-express.com
 ows                            A      219.134.187.154
 owsuat                         A      219.134.187.146
 pcs                            NS     server = nslp.sf-express.com
 pcs-uat                        A      219.134.187.143
 pop                            A      219.134.187.235
 portal                         NS     server = nslp.sf-express.com
 pos                            NS     server = ns.pos.sf-express.com
 ns.pos                         A      58.61.142.11
 printandgo                     A      115.160.146.195
 r12crp1                        A      219.134.187.148
 sap                            NS     server = nslp.sf-express.com
 scan                           NS     server = nslp.sf-express.com
 sch                            NS     server = nslp.sf-express.com
 sch-cn0205                     NS     server = nslp.sf-express.com
 sch-tb01                       NS     server = nslp.sf-express.com
 sch2                           NS     server = nslp.sf-express.com
 search                         A      219.134.187.235
 ses                            A      219.134.187.229
 sfadp                          A      219.134.187.215
 sfams                          NS     server = nslp.sf-express.com
 sfawb                          A      115.160.146.195
 sfcode                         A      219.128.48.181
 sfec                           A      202.66.140.166
 sffi                           NS     server = nslp.sf-express.com
 sfftp                          NS     server = nslp.sf-express.com
 sfkf                           NS     server = nslp.sf-express.com
 sfkf2                          A      61.160.98.126
 sfmantis                       A      219.134.187.136
 sfmap                          NS     server = nslp.sf-express.com
 sfmap-uat                      A      219.134.187.137
 sfmapapi                       NS     server = nslp.sf-express.com
 sfocs                          NS     server = nslp.sf-express.com
 sfppayment                     A      219.134.187.148
 sfsp                           A      58.214.20.173
 sfssh                          A      219.134.187.132
 sftp                           NS     server = zslp.sf-express.com
 sfvip-uat                      A      219.134.187.139
 sg                             A      115.42.211.32
 sgncs                          A      202.66.140.170
 sgresearch                     A      202.66.140.170
 shvpn                          NS     server = nslp.sf-express.com
 smc                            A      58.61.142.164
 sms                            NS     server = nslp.sf-express.com
 smtp                           A      219.134.187.235
 spefind                        NS     server = nslp.sf-express.com
 sss-ai                         A      219.134.187.133
 sss-cms                        A      219.134.187.133
 sss-gui                        A      219.134.187.133
 sss-uat                        A      219.134.187.131
 steam                          A      219.134.187.207
 stock                          NS     server = nslp.sf-express.com
 sxcx                           NS     server = nslp.sf-express.com
 syt                            NS     server = nslp.sf-express.com
 taoda                          A      202.66.140.170
 tcrm                           NS     server = nslp.sf-express.com
 tempftp                        NS     server = nslp.sf-express.com
 test240                        NS     server = nslp.sf-express.com
 testvpn                        NS     server = nslp.sf-express.com
 testvpn                        A      58.61.142.180
 tslp                           A      219.134.187.137
 tstest                         NS     server = nslp.sf-express.com
 ttt                            NS     server = tslp.sf-express.com
 tw                             A      219.87.80.7
 twncs                          A      202.66.140.170
 twresearch                     A      202.66.140.170
 uat                            A      219.134.187.134
 uat-cbs                        A      219.134.187.131
 uatmobile                      A      219.134.187.152
 uatwap                         A      219.134.187.149
 unhqvpn                        NS     server = nslp.sf-express.com
 unwxvpn                        A      122.193.143.234
 upvideo                        A      113.106.167.19
 video                          A      113.106.167.17
 virus                          NS     server = nslp.sf-express.com
 vms-uat                        A      219.134.187.152
 vpn                            NS     server = nslp.sf-express.com
 vpnhelp                        NS     server = nslp.sf-express.com
 w1                             A      219.134.187.147
 w2                             A      219.134.187.146
 wap                            NS     server = nslp.sf-express.com
 waybill                        NS     server = nslp.sf-express.com
 waybill1                       NS     server = zslp.sf-express.com
 wbcnc2vpn                      NS     server = nslp.sf-express.com
 wbcncvpn                       NS     server = nslp.sf-express.com
 wbct2vpn                       NS     server = nslp.sf-express.com
 wbctvpn                        NS     server = nslp.sf-express.com
 wbep                           NS     server = nslp.sf-express.com
 wbepdd                         A      61.132.128.72
 wbeptrain                      A      219.134.187.144
 webhk2                         A      202.66.140.162
 wsus                           NS     server = nslp.sf-express.com
 www                            NS     server = wwwdns.sf-express.com
 www1                           A      202.66.140.171
 wwwdns                         A      61.190.38.151
 wwwdns                         A      118.122.122.14
 wwwdns                         A      119.6.15.181
 wwwdns                         A      220.248.230.136
 wxcncvpn                       NS     server = nslp.sf-express.com
 wxcncwrt                       A      122.193.143.233
 wxctvpn                        NS     server = nslp.sf-express.com
 wxctwrt                        A      61.160.98.123
 wxlp                           A      61.160.98.123
 wxlp                           A      221.6.103.114
 zcmpart                        NS     server = nslp.sf-express.com
 zslp                           A      219.128.48.189
 zslp                           A      221.4.197.62
>

修复方案：

正确配置dns服务器

版权声明：转载请注明来源 VIP@乌云

漏洞回应

厂商回应：

危害等级：低

漏洞Rank：2

确认时间：2012-12-04 16:57

厂商回复：

谢谢。
BTW：这是第三方服务提供商的问题，貌似不应该算到我们公司头上吧。

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-015604

漏洞标题：顺丰快递dns域传送-2

相关厂商：顺丰速运

漏洞作者： VIP

提交时间：2012-12-04 16:43

修复时间：2013-01-18 16:44

公开时间：2013-01-18 16:44

漏洞类型：敏感信息泄露

危害等级：中

自评Rank：10

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 VIP@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-015604

漏洞标题：顺丰快递dns域传送-2

相关厂商：顺丰速运

漏洞作者： VIP

提交时间：2012-12-04 16:43

修复时间：2013-01-18 16:44

公开时间：2013-01-18 16:44

漏洞类型：敏感信息泄露

危害等级：中

自评Rank：10

漏洞状态：厂商已经确认

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2012-015604"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 VIP@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞概要关注数(24) 关注此漏洞

Tags标签：无

4人收藏收藏
分享漏洞：