当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0162897

漏洞标题:哈尔滨工业大学(威海)DNS域传送漏洞

相关厂商:哈尔滨工业大学

漏洞作者: 404notfound

提交时间:2015-12-21 11:55

修复时间:2016-02-07 17:56

公开时间:2016-02-07 17:56

漏洞类型:系统/服务运维配置不当

危害等级:中

自评Rank:10

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-12-21: 细节已通知厂商并且等待厂商处理中
2015-12-25: 厂商已经确认,细节仅向厂商公开
2016-01-04: 细节向核心白帽子及相关领域专家公开
2016-01-14: 细节向普通白帽子公开
2016-01-24: 细节向实习白帽子公开
2016-02-07: 细节向公众公开

简要描述:

dns2.hitwh.edu.cn
哈尔滨工业大学(威海)DNS服务器配置不当,信息泄露

详细说明:

; <<>> DiG 9.9.5-W1 <<>> @dns2.hitwh.edu.cn axfr hitwh.edu.cn
; (1 server found)
;; global options: +cmd
hitwh.edu.cn. 86400 IN SOA dns1.hitwh.edu.cn. root.hitwh.edu.cn. 2971347817 28800 14400 3600000 86400
hitwh.edu.cn. 86400 IN A 202.102.144.56
hitwh.edu.cn. 86400 IN MX 10 mail.hit.edu.cn.
hitwh.edu.cn. 86400 IN NS dns1.hitwh.edu.cn.
hitwh.edu.cn. 86400 IN NS dns2.hitwh.edu.cn.
*.hitwh.edu.cn. 86400 IN A 202.102.144.56
30.hitwh.edu.cn. 86400 IN A 222.194.15.162
acm.hitwh.edu.cn. 86400 IN A 202.102.144.36
alumni.hitwh.edu.cn. 86400 IN A 222.194.15.167
atc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
auto.hitwh.edu.cn. 86400 IN A 202.102.144.36
bb.hitwh.edu.cn. 86400 IN A 222.194.15.30
bbstest.hitwh.edu.cn. 86400 IN A 222.194.15.46
biox.hitwh.edu.cn. 86400 IN A 202.102.144.55
box.hitwh.edu.cn. 86400 IN A 202.102.144.56
cacti.hitwh.edu.cn. 86400 IN A 172.26.27.7
ce.hitwh.edu.cn. 86400 IN A 202.102.144.51
century.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
ceshi.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
civil.hitwh.edu.cn. 86400 IN A 202.102.144.36
cj.hitwh.edu.cn. 86400 IN A 202.102.144.56
stu.hitwh.edu.cn.hitwh.edu.cn. 86400 IN TXT "MS=ms39989102"
cs.hitwh.edu.cn. 86400 IN A 202.102.144.36
cslab.hitwh.edu.cn. 86400 IN A 202.102.144.36
cwc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
cwsn.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
cxcy.hitwh.edu.cn. 86400 IN CNAME www3.hitwh.edu.cn.
dev.hitwh.edu.cn. 86400 IN CNAME www5.hitwh.edu.cn.
dgdz.hitwh.edu.cn. 86400 IN A 202.102.144.36
dipt.hitwh.edu.cn. 86400 IN A 202.102.144.36
dns1.hitwh.edu.cn. 86400 IN A 222.194.15.6
dns2.hitwh.edu.cn. 86400 IN A 222.194.15.9
dqb.hitwh.edu.cn. 86400 IN A 202.102.144.36
ds.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
eealab.hitwh.edu.cn. 86400 IN A 222.194.14.38
eelab.hitwh.edu.cn. 86400 IN A 222.194.13.250
email.hitwh.edu.cn. 86400 IN A 202.102.144.59
en.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
epaper.hitwh.edu.cn. 86400 IN A 202.102.144.55
Erange.hitwh.edu.cn. 86400 IN A 222.194.14.66
fed.hitwh.edu.cn. 86400 IN A 202.102.144.36
fsae.hitwh.edu.cn. 86400 IN A 222.194.15.114
ftp.hitwh.edu.cn. 86400 IN A 172.17.17.17
fzjj.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
gcc.hitwh.edu.cn. 86400 IN A 202.102.144.36
gh.hitwh.edu.cn. 86400 IN A 202.102.144.36
ghtt.hitwh.edu.cn. 86400 IN A 222.194.15.22
give.hitwh.edu.cn. 86400 IN A 222.194.15.164
graphite.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
hitmse.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
hitxg.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
hq.hitwh.edu.cn. 86400 IN A 202.102.144.36
hr.hitwh.edu.cn. 86400 IN A 202.102.144.36
ice.hitwh.edu.cn. 86400 IN A 202.102.144.51
icss2015.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
imc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
inet.hitwh.edu.cn. 86400 IN A 172.31.159.111
infosec.hitwh.edu.cn. 86400 IN A 202.102.144.36
isear.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
jcc.hitwh.edu.cn. 86400 IN A 202.102.144.56
jdh.hitwh.edu.cn. 86400 IN A 202.102.144.36
jjsfb.hitwh.edu.cn. 86400 IN A 202.102.144.36
job.hitwh.edu.cn. 86400 IN A 202.102.144.50
journal.hitwh.edu.cn. 86400 IN A 221.2.164.62
jwc.hitwh.edu.cn. 86400 IN A 202.102.144.36
kjc.hitwh.edu.cn. 86400 IN A 202.102.144.60
kjfzc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
korean.hitwh.edu.cn. 86400 IN A 172.29.131.211
lc.hitwh.edu.cn. 86400 IN A 221.2.164.62
league.hitwh.edu.cn. 86400 IN A 202.102.144.36
lib.hitwh.edu.cn. 86400 IN A 222.194.15.85
live.hitwh.edu.cn. 86400 IN MX 10 896793098.mail.outlook.com.
mail.hitwh.edu.cn. 86400 IN A 202.102.144.58
marine.hitwh.edu.cn. 86400 IN A 202.102.144.36
mdjx.hitwh.edu.cn. 86400 IN A 202.102.144.60
mdjxh.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
mingde.hitwh.edu.cn. 86400 IN A 202.102.144.60
mng.hitwh.edu.cn. 86400 IN CNAME ce.hitwh.edu.cn.
mse.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
mseold.hitwh.edu.cn. 86400 IN A 202.102.144.36
netcenter.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
network.hitwh.edu.cn. 86400 IN A 172.31.159.252
news.hitwh.edu.cn. 86400 IN A 202.102.144.56
nis.hitwh.edu.cn. 86400 IN A 222.194.15.252
nrce.hitwh.edu.cn. 86400 IN A 202.102.144.56
oerc.hitwh.edu.cn. 86400 IN A 202.102.144.36
oerc1.hitwh.edu.cn. 86400 IN A 202.102.144.36
office.hitwh.edu.cn. 86400 IN A 202.102.144.56
ped.hitwh.edu.cn. 86400 IN A 202.102.144.36
psy.hitwh.edu.cn. 86400 IN A 222.194.15.45
qc.hitwh.edu.cn. 86400 IN CNAME ce.hitwh.edu.cn.
qd.hitwh.edu.cn. 86400 IN A 202.102.144.56
qnkx.hitwh.edu.cn. 86400 IN A 172.29.27.203
radio.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
rsc.hitwh.edu.cn. 86400 IN A 202.102.144.56
sem.hitwh.edu.cn. 86400 IN A 202.102.144.36
shipbuilding.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
siee.hitwh.edu.cn. 86400 IN A 202.102.144.36
sll.hitwh.edu.cn. 86400 IN A 202.102.144.36
snaoe.hitwh.edu.cn. 86400 IN A 202.102.144.36
software.hitwh.edu.cn. 86400 IN A 202.102.144.15
ss.hitwh.edu.cn. 86400 IN A 202.102.144.36
stunion.hitwh.edu.cn. 86400 IN A 202.102.144.36
test.hitwh.edu.cn. 86400 IN A 202.102.144.56
today.hitwh.edu.cn. 86400 IN A 202.102.144.56
tv.hitwh.edu.cn. 86400 IN A 202.102.144.55
vcenter.hitwh.edu.cn. 86400 IN A 172.26.25.10
volunteer.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
weld.hitwh.edu.cn. 86400 IN CNAME www3.hitwh.edu.cn.
wh.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
wse2013.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
www.hitwh.edu.cn. 86400 IN A 202.102.144.56
www2.hitwh.edu.cn. 86400 IN A 202.102.144.36
www3.hitwh.edu.cn. 86400 IN A 202.102.144.60
www4.hitwh.edu.cn. 86400 IN A 222.194.15.165
www5.hitwh.edu.cn. 86400 IN A 222.194.15.162
xfjjx.hitwh.edu.cn. 86400 IN A 202.102.144.36
xgc.hitwh.edu.cn. 86400 IN A 222.194.15.45
xshome.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
xsjjt.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
xxgk.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
yjs.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
ysj.hitwh.edu.cn. 86400 IN A 202.102.144.36
zcc.hitwh.edu.cn. 86400 IN A 202.102.144.36
zdh.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
zsb.hitwh.edu.cn. 86400 IN A 202.102.144.52
zw.hitwh.edu.cn. 86400 IN A 202.102.144.36
hitwh.edu.cn. 86400 IN SOA dns1.hitwh.edu.cn. root.hitwh.edu.cn. 2971347817 28800 14400 3600000 86400
;; Query time: 70 msec
;; SERVER: 222.194.15.9#53(222.194.15.9)
;; WHEN: Thu Dec 17 12:09:58 中国标准时间 2015
;; XFR size: 128 records (messages 1, bytes 2746)

漏洞证明:

; <<>> DiG 9.9.5-W1 <<>> @dns2.hitwh.edu.cn axfr hitwh.edu.cn
; (1 server found)
;; global options: +cmd
hitwh.edu.cn. 86400 IN SOA dns1.hitwh.edu.cn. root.hitwh.edu.cn. 2971347817 28800 14400 3600000 86400
hitwh.edu.cn. 86400 IN A 202.102.144.56
hitwh.edu.cn. 86400 IN MX 10 mail.hit.edu.cn.
hitwh.edu.cn. 86400 IN NS dns1.hitwh.edu.cn.
hitwh.edu.cn. 86400 IN NS dns2.hitwh.edu.cn.
*.hitwh.edu.cn. 86400 IN A 202.102.144.56
30.hitwh.edu.cn. 86400 IN A 222.194.15.162
acm.hitwh.edu.cn. 86400 IN A 202.102.144.36
alumni.hitwh.edu.cn. 86400 IN A 222.194.15.167
atc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
auto.hitwh.edu.cn. 86400 IN A 202.102.144.36
bb.hitwh.edu.cn. 86400 IN A 222.194.15.30
bbstest.hitwh.edu.cn. 86400 IN A 222.194.15.46
biox.hitwh.edu.cn. 86400 IN A 202.102.144.55
box.hitwh.edu.cn. 86400 IN A 202.102.144.56
cacti.hitwh.edu.cn. 86400 IN A 172.26.27.7
ce.hitwh.edu.cn. 86400 IN A 202.102.144.51
century.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
ceshi.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
civil.hitwh.edu.cn. 86400 IN A 202.102.144.36
cj.hitwh.edu.cn. 86400 IN A 202.102.144.56
stu.hitwh.edu.cn.hitwh.edu.cn. 86400 IN TXT "MS=ms39989102"
cs.hitwh.edu.cn. 86400 IN A 202.102.144.36
cslab.hitwh.edu.cn. 86400 IN A 202.102.144.36
cwc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
cwsn.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
cxcy.hitwh.edu.cn. 86400 IN CNAME www3.hitwh.edu.cn.
dev.hitwh.edu.cn. 86400 IN CNAME www5.hitwh.edu.cn.
dgdz.hitwh.edu.cn. 86400 IN A 202.102.144.36
dipt.hitwh.edu.cn. 86400 IN A 202.102.144.36
dns1.hitwh.edu.cn. 86400 IN A 222.194.15.6
dns2.hitwh.edu.cn. 86400 IN A 222.194.15.9
dqb.hitwh.edu.cn. 86400 IN A 202.102.144.36
ds.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
eealab.hitwh.edu.cn. 86400 IN A 222.194.14.38
eelab.hitwh.edu.cn. 86400 IN A 222.194.13.250
email.hitwh.edu.cn. 86400 IN A 202.102.144.59
en.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
epaper.hitwh.edu.cn. 86400 IN A 202.102.144.55
Erange.hitwh.edu.cn. 86400 IN A 222.194.14.66
fed.hitwh.edu.cn. 86400 IN A 202.102.144.36
fsae.hitwh.edu.cn. 86400 IN A 222.194.15.114
ftp.hitwh.edu.cn. 86400 IN A 172.17.17.17
fzjj.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
gcc.hitwh.edu.cn. 86400 IN A 202.102.144.36
gh.hitwh.edu.cn. 86400 IN A 202.102.144.36
ghtt.hitwh.edu.cn. 86400 IN A 222.194.15.22
give.hitwh.edu.cn. 86400 IN A 222.194.15.164
graphite.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
hitmse.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
hitxg.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
hq.hitwh.edu.cn. 86400 IN A 202.102.144.36
hr.hitwh.edu.cn. 86400 IN A 202.102.144.36
ice.hitwh.edu.cn. 86400 IN A 202.102.144.51
icss2015.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
imc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
inet.hitwh.edu.cn. 86400 IN A 172.31.159.111
infosec.hitwh.edu.cn. 86400 IN A 202.102.144.36
isear.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
jcc.hitwh.edu.cn. 86400 IN A 202.102.144.56
jdh.hitwh.edu.cn. 86400 IN A 202.102.144.36
jjsfb.hitwh.edu.cn. 86400 IN A 202.102.144.36
job.hitwh.edu.cn. 86400 IN A 202.102.144.50
journal.hitwh.edu.cn. 86400 IN A 221.2.164.62
jwc.hitwh.edu.cn. 86400 IN A 202.102.144.36
kjc.hitwh.edu.cn. 86400 IN A 202.102.144.60
kjfzc.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
korean.hitwh.edu.cn. 86400 IN A 172.29.131.211
lc.hitwh.edu.cn. 86400 IN A 221.2.164.62
league.hitwh.edu.cn. 86400 IN A 202.102.144.36
lib.hitwh.edu.cn. 86400 IN A 222.194.15.85
live.hitwh.edu.cn. 86400 IN MX 10 896793098.mail.outlook.com.
mail.hitwh.edu.cn. 86400 IN A 202.102.144.58
marine.hitwh.edu.cn. 86400 IN A 202.102.144.36
mdjx.hitwh.edu.cn. 86400 IN A 202.102.144.60
mdjxh.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
mingde.hitwh.edu.cn. 86400 IN A 202.102.144.60
mng.hitwh.edu.cn. 86400 IN CNAME ce.hitwh.edu.cn.
mse.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
mseold.hitwh.edu.cn. 86400 IN A 202.102.144.36
netcenter.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
network.hitwh.edu.cn. 86400 IN A 172.31.159.252
news.hitwh.edu.cn. 86400 IN A 202.102.144.56
nis.hitwh.edu.cn. 86400 IN A 222.194.15.252
nrce.hitwh.edu.cn. 86400 IN A 202.102.144.56
oerc.hitwh.edu.cn. 86400 IN A 202.102.144.36
oerc1.hitwh.edu.cn. 86400 IN A 202.102.144.36
office.hitwh.edu.cn. 86400 IN A 202.102.144.56
ped.hitwh.edu.cn. 86400 IN A 202.102.144.36
psy.hitwh.edu.cn. 86400 IN A 222.194.15.45
qc.hitwh.edu.cn. 86400 IN CNAME ce.hitwh.edu.cn.
qd.hitwh.edu.cn. 86400 IN A 202.102.144.56
qnkx.hitwh.edu.cn. 86400 IN A 172.29.27.203
radio.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
rsc.hitwh.edu.cn. 86400 IN A 202.102.144.56
sem.hitwh.edu.cn. 86400 IN A 202.102.144.36
shipbuilding.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
siee.hitwh.edu.cn. 86400 IN A 202.102.144.36
sll.hitwh.edu.cn. 86400 IN A 202.102.144.36
snaoe.hitwh.edu.cn. 86400 IN A 202.102.144.36
software.hitwh.edu.cn. 86400 IN A 202.102.144.15
ss.hitwh.edu.cn. 86400 IN A 202.102.144.36
stunion.hitwh.edu.cn. 86400 IN A 202.102.144.36
test.hitwh.edu.cn. 86400 IN A 202.102.144.56
today.hitwh.edu.cn. 86400 IN A 202.102.144.56
tv.hitwh.edu.cn. 86400 IN A 202.102.144.55
vcenter.hitwh.edu.cn. 86400 IN A 172.26.25.10
volunteer.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
weld.hitwh.edu.cn. 86400 IN CNAME www3.hitwh.edu.cn.
wh.hitwh.edu.cn. 86400 IN CNAME www4.hitwh.edu.cn.
wse2013.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
www.hitwh.edu.cn. 86400 IN A 202.102.144.56
www2.hitwh.edu.cn. 86400 IN A 202.102.144.36
www3.hitwh.edu.cn. 86400 IN A 202.102.144.60
www4.hitwh.edu.cn. 86400 IN A 222.194.15.165
www5.hitwh.edu.cn. 86400 IN A 222.194.15.162
xfjjx.hitwh.edu.cn. 86400 IN A 202.102.144.36
xgc.hitwh.edu.cn. 86400 IN A 222.194.15.45
xshome.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
xsjjt.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
xxgk.hitwh.edu.cn. 86400 IN CNAME www.hitwh.edu.cn.
yjs.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
ysj.hitwh.edu.cn. 86400 IN A 202.102.144.36
zcc.hitwh.edu.cn. 86400 IN A 202.102.144.36
zdh.hitwh.edu.cn. 86400 IN CNAME www2.hitwh.edu.cn.
zsb.hitwh.edu.cn. 86400 IN A 202.102.144.52
zw.hitwh.edu.cn. 86400 IN A 202.102.144.36
hitwh.edu.cn. 86400 IN SOA dns1.hitwh.edu.cn. root.hitwh.edu.cn. 2971347817 28800 14400 3600000 86400
;; Query time: 70 msec
;; SERVER: 222.194.15.9#53(222.194.15.9)
;; WHEN: Thu Dec 17 12:09:58 中国标准时间 2015
;; XFR size: 128 records (messages 1, bytes 2746)

修复方案:

严格限制允许区域传送的主机;使用TSIG key来严格定义区域传送的关系

版权声明:转载请注明来源 404notfound@乌云


漏洞回应

厂商回应:

危害等级:低

漏洞Rank:5

确认时间:2015-12-25 15:32

厂商回复:

感谢

最新状态:

暂无