当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2012-012280

漏洞标题:西部数据DNS域传送泄露 以及公司其他域名

相关厂商:西部数码

漏洞作者: 艾特绅

提交时间:2012-09-16 17:36

修复时间:2012-10-31 17:36

公开时间:2012-10-31 17:36

漏洞类型:网络敏感信息泄漏

危害等级:低

自评Rank:5

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2012-09-16: 细节已通知厂商并且等待厂商处理中
2012-09-17: 厂商已经确认,细节仅向厂商公开
2012-09-27: 细节向核心白帽子及相关领域专家公开
2012-10-07: 细节向普通白帽子公开
2012-10-17: 细节向实习白帽子公开
2012-10-31: 细节向公众公开

简要描述:

DNS泄露 对DNS服务器不会造成太大危害 但会导致攻击者可以下载所有的dns信息 收集服务器主机地址,为后续的入侵提供帮助 西部数据 是一家域名供应商更应该注重此类漏洞

详细说明:

漏洞证明:

因为比较多 我就复制一部分
westdata.cn 3600 IN SOA
westdata.cn 3600 IN NS
westdata.cn 3600 IN NS
westdata.cn 3600 IN NS
westdata.cn 3600 IN NS
westdata.cn 3600 IN NS
westdata.cn 3600 IN NS
westdata.cn 900 IN A 61.139.126.59
westdata.cn 900 IN MX
westdata.cn 900 IN TXT
4000386663.westdata.cn 900 IN A 125.65.113.249
64yc.westdata.cn 900 IN A 61.188.39.33
8BTC.westdata.cn 900 IN A 61.188.39.18
agent.westdata.cn 3600 IN A 218.30.103.126
api.westdata.cn 900 IN CNAME
baima.westdata.cn 900 IN A 125.65.108.201
binbotech.westdata.cn 3600 IN A 218.5.76.19
bluehr.westdata.cn 900 IN A 116.255.235.35
bluesg.westdata.cn 900 IN A 116.255.235.35
blyx.westdata.cn 900 IN A 183.60.156.149
cagejin.westdata.cn 900 IN A 125.65.108.208
cpx.westdata.cn 900 IN CNAME
inhao.westdata.cn 900 IN A 118.126.5.70
jetjen.westdata.cn 900 IN A 182.131.1.38
kesine.westdata.cn 3600 IN A 218.5.77.24
kevinyang2008.westdata.cn 900 IN A 125.65.108.144
kunssa.westdata.cn 900 IN A 118.126.5.75
leochen3405.westdata.cn 900 IN A 221.123.132.25
lianniql.westdata.cn 900 IN A 118.123.17.203
lijing2001.westdata.cn 900 IN CNAME
linuxfsdfs.westdata.cn 3600 IN A 218.5.77.24
loudou.westdata.cn 900 IN A 118.123.17.198
mail.westdata.cn 900 IN CNAME
pengyouhuo.westdata.cn 900 IN A 116.255.186.74
pzhg51.westdata.cn 900 IN A 118.123.17.220
ricky8018.westdata.cn 900 IN A 125.65.108.66
riij.westdata.cn 900 IN A 219.234.4.74
sinokc.westdata.cn 3600 IN A 218.5.77.24
sospda.westdata.cn 900 IN A 116.255.139.123
superadmin.westdata.cn 900 IN A 61.139.126.20
txwb.westdata.cn 900 IN A 118.123.17.250
westapi.westdata.cn 3600 IN A 61.139.126.56
www.westdata.cn 900 IN CNAME
xishu.westdata.cn 900 IN A 116.255.187.18
xulitian.westdata.cn 3600 IN A 218.5.76.19
y-english.westdata.cn 900 IN A 116.255.187.58
yanxiongzhuo.westdata.cn 3600 IN A 61.152.160.201
yi63.westdata.cn 900 IN A 118.123.7.238
yutian041.westdata.cn 900 IN A 116.255.235.68
yxjqd.westdata.cn 900 IN A 118.123.15.205
zhutong100.westdata.cn 900 IN A 118.123.15.27
zzware.westdata.cn 900 IN A 125.65.108.95
*.h85.myhostadmin.net 900 IN A 61.139.126.85
*.h90.myhostadmin.net 900 IN A 61.139.126.90
*.h92.myhostadmin.net 900 IN A 61.139.126.92
*.h97.myhostadmin.net 900 IN A 220.166.64.97
*.h98.myhostadmin.net 900 IN A 61.139.126.98
ip.myhostadmin.net 3600 IN A 61.139.126.20
*.j205.myhostadmin.net 900 IN A 61.139.126.205
java.myhostadmin.net 3600 IN A 118.123.15.84
kqy929.myhostadmin.net 3600 IN A 1.1.1.1
*.l111.myhostadmin.net 900 IN A 118.123.20.111
*.l115.myhostadmin.net 900 IN A 61.139.126.115
*.l116.myhostadmin.net 900 IN A 61.139.126.116
l13.myhostadmin.net 3600 IN A 125.65.76.13
*.l13.myhostadmin.net 3600 IN A 125.65.76.13
*.l139.myhostadmin.net 900 IN A 116.255.137.139
*.l166.myhostadmin.net 900 IN A 219.234.4.136
*.l18.myhostadmin.net 900 IN A 118.123.20.18
*.l187.myhostadmin.net 900 IN A 219.234.4.12
*.l207.myhostadmin.net 900 IN A 118.123.7.207
*.l21.myhostadmin.net 900 IN A 219.234.4.21
*.l216.myhostadmin.net 900 IN A 61.139.126.216
*.l221.myhostadmin.net 3600 IN A 218.83.154.226
*.l232.myhostadmin.net 900 IN A 61.139.126.232
*.l235.myhostadmin.net 900 IN A 61.139.126.235
*.l237.myhostadmin.net 900 IN A 118.123.7.237
*.l238.myhostadmin.net 900 IN A 61.139.126.238
*.l244.myhostadmin.net 900 IN A 61.139.126.244
*.l25.myhostadmin.net 900 IN A 118.123.20.25
*.l254.myhostadmin.net 900 IN A 118.123.13.254
*.l31.myhostadmin.net 900 IN A 118.123.17.8
*.l40.myhostadmin.net 900 IN A 219.234.4.40
*.l41.myhostadmin.net 3600 IN A 61.139.126.251
*.l57.myhostadmin.net 3600 IN A 61.139.126.251
ab900.l57.myhostadmin.net 900 IN CNAME
bluefish.l57.myhostadmin.net 3600 IN CNAME
cdxjsrj.l57.myhostadmin.net 3600 IN CNAME
cdxjzjj.l57.myhostadmin.net 900 IN CNAME
jsphost2.l57.myhostadmin.net 3600 IN CNAME
xjfinance.l57.myhostadmin.net 3600 IN CNAME
xjgrain.l57.myhostadmin.net 3600 IN CNAME
xjkjj.l57.myhostadmin.net 3600 IN CNAME
xjpsb.l57.myhostadmin.net 3600 IN CNAME
zengxb8415.l57.myhostadmin.net 3600 IN CNAME
*.l60.myhostadmin.net 900 IN A 61.139.126.60
*.l74.myhostadmin.net 3600 IN A 61.139.126.74
*.l88.myhostadmin.net 900 IN A 61.139.126.88
*.l97.myhostadmin.net 900 IN A 61.139.126.97
95ying.m101.myhostadmin.net 900 IN CNAME
*.m102.myhostadmin.net 900 IN A 219.234.4.8
synxq.m102.myhostadmin.net 900 IN CNAME
*.m103.myhostadmin.net 900 IN A 219.234.4.16
*.m104.myhostadmin.net 900 IN A 219.234.4.18
hao117.m104.myhostadmin.net 3600 IN CNAME
*.m105.myhostadmin.net 900 IN A 219.234.4.175
xinyuangu.m105.myhostadmin.net 900 IN CNAME
*.m147.myhostadmin.net 900 IN A 96.46.9.147
*.m38.myhostadmin.net 900 IN A 61.139.126.210
*.m66.myhostadmin.net 900 IN A 96.46.1.66
pinwei99.m66.myhostadmin.net 900 IN CNAME
*.m83.myhostadmin.net 900 IN A 96.46.7.203
mail.myhostadmin.net 900 IN A 205.209.184.137
mail2.myhostadmin.net 3600 IN A 61.139.126.30
mail2en.myhostadmin.net 3600 IN CNAME
mail3.myhostadmin.net 3600 IN A 61.139.126.68
mail3en.myhostadmin.net 3600 IN CNAME
mail4.myhostadmin.net 3600 IN A 61.139.126.86
mail5.myhostadmin.net 3600 IN A 61.139.126.112
mail6.myhostadmin.net 300 IN A 118.123.22.5
mail7.myhostadmin.net 900 IN A 118.123.21.225
mail8.myhostadmin.net 900 IN A 118.123.15.220
mailserver.myhostadmin.net 3600 IN A 2.2.2.2
mailspec.myhostadmin.net 3600 IN A 123.71.253.137
mailtest.myhostadmin.net 3600 IN A 125.65.76.13
mailvip.myhostadmin.net 900 IN A 118.123.17.20
*.ml59.myhostadmin.net 900 IN A 96.46.1.59
mx17.myhostadmin.net 3600 IN A 61.139.126.37
mysql.myhostadmin.net 3600 IN A 61.139.126.44
*.n53.myhostadmin.net 3600 IN A 61.139.126.53
ns1.myhostadmin.net 900 IN A 61.139.126.195
ns1.myhostadmin.net 900 IN A 118.123.15.46
ns1.myhostadmin.net 900 IN A 118.123.15.48
ns1-domain-expired.myhostadmin.net 900 IN A 61.139.126.97
ns2.myhostadmin.net 900 IN A 118.123.15.45
ns2.myhostadmin.net 900 IN A 118.123.249.88
ns2.myhostadmin.net 900 IN A 118.123.249.114
ns2-domain-expired.myhostadmin.net 900 IN A 61.139.126.244
ns2-domain-expired.myhostadmin.net 900 IN A 118.123.15.42
ns3.myhostadmin.net 900 IN A 61.139.126.195
ns3.myhostadmin.net 900 IN A 118.123.15.45
ns3.myhostadmin.net 900 IN A 118.123.15.46
ns4.myhostadmin.net 900 IN A 61.139.126.229
ns4.myhostadmin.net 900 IN A 118.123.249.88
ns4.myhostadmin.net 900 IN A 118.123.249.112
ns5.myhostadmin.net 900 IN A 61.139.126.195
ns5.myhostadmin.net 900 IN A 118.123.15.48
ns5.myhostadmin.net 900 IN A 118.123.249.112
ns6.myhostadmin.net 900 IN A 61.139.126.229
ns6.myhostadmin.net 900 IN A 118.123.249.88
ns6.myhostadmin.net 900 IN A 118.123.249.114
ns7.myhostadmin.net 900 IN A 1.2.3.4
ns9.myhostadmin.net 900 IN A 1.2.3.4
regok.myhostadmin.net 3600 IN A 127.0.0.1
shopex.myhostadmin.net 3600 IN A 118.123.15.84
sqladmin.myhostadmin.net 3600 IN A 61.139.126.253
*.t108.myhostadmin.net 900 IN A 113.10.172.7
20080609xwas.t108.myhostadmin.net 3600 IN CNAME
web5091221002.t108.myhostadmin.net 3600 IN CNAME
*.t109.myhostadmin.net 900 IN A 113.10.173.42
tel.myhostadmin.net 3600 IN A 61.139.126.50
cdn2.test.myhostadmin.net 3600 IN A 118.123.15.75
*.test230.myhostadmin.net 900 IN A 125.65.82.230
testfamp.myhostadmin.net 3600 IN A 118.123.15.84
testmail.myhostadmin.net 3600 IN A 118.123.7.192
testvhost.myhostadmin.net 3600 IN CNAME
twmail.myhostadmin.net 900 IN A 113.10.173.136
*.u125.myhostadmin.net 900 IN A 219.234.4.13
*.u86.myhostadmin.net 900 IN A 96.46.12.194
update.myhostadmin.net 900 IN CNAME
usa5.myhostadmin.net 900 IN A 96.46.8.232
usamail.myhostadmin.net 900 IN A 205.209.184.137
user.myhostadmin.net 900 IN A 118.123.17.13
*.user.myhostadmin.net 900 IN A 118.123.17.13
vip.myhostadmin.net 300 IN A 113.10.149.10
vipmail.myhostadmin.net 900 IN A 118.123.17.20
vipmail10.myhostadmin.net 3600 IN A 119.161.148.72
vipmail2.myhostadmin.net 3600 IN A 125.65.113.65
vipmail8.myhostadmin.net 900 IN A 219.234.4.9
vipmail9.myhostadmin.net 900 IN A 211.101.18.30
*.w100.myhostadmin.net 3600 IN A 61.139.126.10
*.w101.myhostadmin.net 3600 IN A 61.139.126.15
001cct.w101.myhostadmin.net 900 IN CNAME
0523jjcc.w101.myhostadmin.net 900 IN CNAME
gyfcbbs.w101.myhostadmin.net 900 IN CNAME
renolee.w101.myhostadmin.net 900 IN CNAME
zhangjunlin.w101.myhostadmin.net 900 IN CNAME
*.w102.myhostadmin.net 3600 IN A 211.144.92.117
*.w106.myhostadmin.net 3600 IN A 218.6.169.106
*.w108.myhostadmin.net 3600 IN A 61.139.126.108
lyzxs.w108.myhostadmin.net 900 IN CNAME
*.w109.myhostadmin.net 900 IN A 61.139.126.109
*.w112.myhostadmin.net 900 IN A 183.60.134.112
*.w113.myhostadmin.net 900 IN A 183.60.134.113
*.w114.myhostadmin.net 3600 IN A 61.139.126.53
cdylfx.w114.myhostadmin.net 3600 IN CNAME
cq58bi.w114.myhostadmin.net 3600 IN CNAME
liuyangkuaiji.w114.myhostadmin.net 900 IN CNAME
lygtrans.w114.myhostadmin.net 3600 IN CNAME
rajuxiang.w114.myhostadmin.net 3600 IN CNAME
xykj.w114.myhostadmin.net 900 IN CNAME
*.w115.myhostadmin.net 900 IN A 211.101.18.117
*.w116.myhostadmin.net 900 IN A 61.139.126.116
*.w117.myhostadmin.net 900 IN A 61.139.126.117
*.w119.myhostadmin.net 900 IN A 183.60.156.177
*.w12.myhostadmin.net 900 IN A 61.139.126.12
*.w121.myhostadmin.net 900 IN A 118.123.17.12
zangyuansu.w121.myhostadmin.net 3600 IN CNAME
*.w122.myhostadmin.net 900 IN A 118.123.15.122
*.w125.myhostadmin.net 900 IN A 61.139.126.53
jiajun.w125.myhostadmin.net 3600 IN CNAME
jycjdq.w125.myhostadmin.net 3600 IN CNAME
ridachina.w125.myhostadmin.net 900 IN CNAME
xbfd08.w125.myhostadmin.net 3600 IN CNAME
xygdj.w125.myhostadmin.net 900 IN CNAME
*.w126.myhostadmin.net 900 IN A 125.65.113.2
*.w127.myhostadmin.net 3600 IN A 61.139.126.34
cnfdckj.w127.myhostadmin.net 900 IN CNAME
sz95302.w127.myhostadmin.net 900 IN CNAME
*.w128.myhostadmin.net 900 IN A 61.139.126.18
hao117.w128.myhostadmin.net 3600 IN CNAME
*.w130.myhostadmin.net 900 IN A 118.123.253.130
*.w133.myhostadmin.net 3600 IN A 61.139.126.6
cqjffq.w133.myhostadmin.net 3600 IN CNAME
tianhongji.w133.myhostadmin.net 900 IN CNAME
yhdz1.w133.myhostadmin.net 3600 IN A 127.0.0.1
*.w137.myhostadmin.net 900 IN A 118.123.253.137
*.w138.myhostadmin.net 900 IN A 118.123.253.138
*.w139.myhostadmin.net 900 IN A 118.123.253.139
*.w142.myhostadmin.net 900 IN A 220.166.64.246
czjstn.w142.myhostadmin.net 3600 IN CNAME
*.w144.myhostadmin.net 3600 IN A 125.65.76.44
*.w145.myhostadmin.net 3600 IN A 61.139.126.8
hkzhenyang.w145.myhostadmin.net 3600 IN CNAME
shuijing.w145.myhostadmin.net 900 IN CNAME
twyida.w145.myhostadmin.net 900 IN CNAME
weisheng.w145.myhostadmin.net 900 IN CNAME
zhouartyi.w145.myhostadmin.net 900 IN CNAME
*.w16.myhostadmin.net 3600 IN A 61.139.126.16
cqoulinweb.w16.myhostadmin.net 900 IN CNAME
cqzjshweb.w16.myhostadmin.net 900 IN CNAME
schaitian.w16.myhostadmin.net 900 IN CNAME
vanse123.w16.myhostadmin.net 900 IN CNAME
*.w160.myhostadmin.net 3600 IN A 221.10.254.160
karcher.w160.myhostadmin.net 900 IN CNAME
lkad.w160.myhostadmin.net 3600 IN CNAME
milanxinniang.w160.myhostadmin.net 900 IN CNAME
yintcang.w160.myhostadmin.net 900 IN CNAME
ytlifeng.w160.myhostadmin.net 900 IN CNAME
*.w165.myhostadmin.net 3600 IN A 61.139.126.78
tangping.w165.myhostadmin.net 3600 IN CNAME
xyssafety.w165.myhostadmin.net 900 IN CNAME
*.w169.myhostadmin.net 3600 IN A 61.139.126.4
huayidz.w169.myhostadmin.net 3600 IN CNAME
njdry2008.w169.myhostadmin.net 900 IN CNAME
*.w170.myhostadmin.net 900 IN A 221.10.254.194
jnmsk.w170.myhostadmin.net 900 IN CNAME

修复方案:

禁用区域传送

版权声明:转载请注明来源 艾特绅@乌云


漏洞回应

厂商回应:

危害等级:低

漏洞Rank:4

确认时间:2012-09-17 10:09

厂商回复:

感谢作者的建议

最新状态:

暂无


漏洞评价:

评论