漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2014-078955
漏洞标题:中石油DNS域传送漏洞
相关厂商:中石油
漏洞作者: bboy
提交时间:2014-10-11 12:23
修复时间:2014-11-25 12:24
公开时间:2014-11-25 12:24
漏洞类型:重要敏感信息泄露
危害等级:中
自评Rank:10
漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2014-10-11: 细节已通知厂商并且等待厂商处理中
2014-10-15: 厂商已经确认,细节仅向厂商公开
2014-10-25: 细节向核心白帽子及相关领域专家公开
2014-11-04: 细节向普通白帽子公开
2014-11-14: 细节向实习白帽子公开
2014-11-25: 细节向公众公开
简要描述:
dns域传送漏洞
详细说明:
> ls petrochina.com.cn
[dns.petrochina.com.cn]
petrochina.com.cn. NS server = dns.petrochina.com.cn
petrochina.com.cn. NS server = ns2.petrochina.com.cn
ax NS server = vpnns3.petrochina.com.cn
ax NS server = vpnns4.petrochina.com.cn
ax1 NS server = vpnns3.petrochina.com.cn
ax1 NS server = vpnns4.petrochina.com.cn
classic A 161.207.5.4
classic A 161.207.9.4
cppeilync A 114.251.197.208
cppeimob A 114.251.197.232
cwb A 219.143.68.9
gateway.dlys A 218.25.170.71
dns A 219.143.68.254
email A 61.232.0.35
email A 219.143.68.119
epush A 61.232.0.30
epush A 219.143.68.106
f5 NS server = lcct.petrochina.com.cn
f5 NS server = lccnc.petrochina.com.cn
gcm A 114.251.197.221
gslb NS server = ns1.gslb.petrochina.com.cn
gslb NS server = ns2.gslb.petrochina.com.cn
ns1.gslb A 219.143.68.113
ns2.gslb A 161.207.5.27
jyz NS server = ns1.jyz.petrochina.com.cn
jyz NS server = ns3.jyz.petrochina.com.cn
ns1.jyz A 125.32.49.66
ns3.jyz A 222.168.103.2
lccnc A 161.207.7.254
lcct A 161.207.11.254
mail A 219.143.68.1
mobile A 219.143.68.10
mps A 210.78.134.80
msg A 61.232.0.34
msg A 219.143.68.118
mx1 A 219.143.68.2
mx2 A 61.232.0.56
ns2 A 161.207.5.12
pis A 125.32.26.12
portal A 219.143.68.10
pps A 161.207.6.1
pps A 161.207.10.1
bak.pps A 114.251.197.185
pps2 A 219.143.68.4
ppsv2 A 114.251.197.216
m.ppsv2 A 114.251.197.217
seap.ppsv2 A 219.143.68.102
tukc.ppsv2 A 219.143.68.108
reach A 123.124.230.15
smtp A 61.232.0.57
smtp A 219.143.68.3
sonic A 123.124.230.35
testmail A 61.232.0.29
testmail A 219.143.68.104
vpn A 219.143.68.52
vpnns3 A 219.143.68.53
vpnns4 A 123.124.230.1
webmail A 219.143.68.4
wideip NS server = ns1.wideip.petrochina.com.cn
wideip NS server = ns2.wideip.petrochina.com.cn
ns1.wideip A 219.142.31.70
ns2.wideip A 61.232.0.2
ydyy A 125.32.26.15
yjs A 202.96.45.27
yjs A 210.78.134.81
zbwideip NS server = ns1.zbwideip.petrochina.com.cn
zbwideip NS server = ns2.zbwideip.petrochina.com.cn
ns1.zbwideip A 210.78.134.65
ns2.zbwideip A 61.148.47.60
zjglcw A 219.143.68.7
>
漏洞证明:
> ls petrochina.com.cn
[dns.petrochina.com.cn]
petrochina.com.cn. NS server = dns.petrochina.com.cn
petrochina.com.cn. NS server = ns2.petrochina.com.cn
ax NS server = vpnns3.petrochina.com.cn
ax NS server = vpnns4.petrochina.com.cn
ax1 NS server = vpnns3.petrochina.com.cn
ax1 NS server = vpnns4.petrochina.com.cn
classic A 161.207.5.4
classic A 161.207.9.4
cppeilync A 114.251.197.208
cppeimob A 114.251.197.232
cwb A 219.143.68.9
gateway.dlys A 218.25.170.71
dns A 219.143.68.254
email A 61.232.0.35
email A 219.143.68.119
epush A 61.232.0.30
epush A 219.143.68.106
f5 NS server = lcct.petrochina.com.cn
f5 NS server = lccnc.petrochina.com.cn
gcm A 114.251.197.221
gslb NS server = ns1.gslb.petrochina.com.cn
gslb NS server = ns2.gslb.petrochina.com.cn
ns1.gslb A 219.143.68.113
ns2.gslb A 161.207.5.27
jyz NS server = ns1.jyz.petrochina.com.cn
jyz NS server = ns3.jyz.petrochina.com.cn
ns1.jyz A 125.32.49.66
ns3.jyz A 222.168.103.2
lccnc A 161.207.7.254
lcct A 161.207.11.254
mail A 219.143.68.1
mobile A 219.143.68.10
mps A 210.78.134.80
msg A 61.232.0.34
msg A 219.143.68.118
mx1 A 219.143.68.2
mx2 A 61.232.0.56
ns2 A 161.207.5.12
pis A 125.32.26.12
portal A 219.143.68.10
pps A 161.207.6.1
pps A 161.207.10.1
bak.pps A 114.251.197.185
pps2 A 219.143.68.4
ppsv2 A 114.251.197.216
m.ppsv2 A 114.251.197.217
seap.ppsv2 A 219.143.68.102
tukc.ppsv2 A 219.143.68.108
reach A 123.124.230.15
smtp A 61.232.0.57
smtp A 219.143.68.3
sonic A 123.124.230.35
testmail A 61.232.0.29
testmail A 219.143.68.104
vpn A 219.143.68.52
vpnns3 A 219.143.68.53
vpnns4 A 123.124.230.1
webmail A 219.143.68.4
wideip NS server = ns1.wideip.petrochina.com.cn
wideip NS server = ns2.wideip.petrochina.com.cn
ns1.wideip A 219.142.31.70
ns2.wideip A 61.232.0.2
ydyy A 125.32.26.15
yjs A 202.96.45.27
yjs A 210.78.134.81
zbwideip NS server = ns1.zbwideip.petrochina.com.cn
zbwideip NS server = ns2.zbwideip.petrochina.com.cn
ns1.zbwideip A 210.78.134.65
ns2.zbwideip A 61.148.47.60
zjglcw A 219.143.68.7
>
修复方案:
版权声明:转载请注明来源 bboy@乌云
漏洞回应
厂商回应:
危害等级:中
漏洞Rank:7
确认时间:2014-10-15 17:45
厂商回复:
最新状态:
暂无