万网CDN域传送漏洞 | wooyun-2012-012454| WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-012454

漏洞标题：万网CDN域传送漏洞

漏洞作者：无敌L.t.H

提交时间：2012-09-20 12:34

修复时间：2012-09-25 12:34

公开时间：2012-09-25 12:34

漏洞类型：系统/服务运维配置不当

危害等级：中

自评Rank：5

漏洞状态：漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2012-09-20：细节已通知厂商并且等待厂商处理中
2012-09-25：厂商已经主动忽略漏洞，细节向公众公开

简要描述：

CDN的NS有域传送漏洞，疑似泄露源IP。

详细说明：

万网CDN域传送漏洞，源IP泄露？

漏洞证明：

> [ns1.hichinacdn.com]
 hichinacdn.com.                NS     server = ns1.hichinacdn.com            
 hichinacdn.com.                NS     server = ns2.hichinacdn.com            
 bbs.51game.asia                A      220.175.122.66
 fswd4.51game.asia              A      220.175.122.69
 qipaile.51game.asia            A      220.175.122.68
 www.51game.asia                A      220.175.122.66
 www.xinteyao.biz               A      61.155.131.30
 cnvip.cc                       A      222.77.187.24
 www.cnvip.cc                   A      222.77.187.24
 ms8.cc                         A      222.77.187.24
 img.ms8.cc                     A      222.77.187.24
 www.ms8.cc                     A      222.77.187.24
 www.redess.cc                  A      218.75.22.236
 www.youlian.cc                 A      121.199.99.105
 cdndown                        A      218.244.147.138
 cdnmanage                      A      218.244.147.133
 www.028net.cn                  A      121.198.7.177
 www.088008.cn                  A      122.226.102.40
 www.120tf.cn                   A      122.226.102.40
 www.120zg.cn                   A      122.226.102.40
 www.163gck.cn                  A      61.155.131.30
 test.188win.cn                 A      122.226.102.40
 www.191818.cn                  A      121.199.254.40
 dns.3ychina.cn                 A      222.35.139.167
 www.4001.cn                    A      61.155.131.30
 www.5151sc.cn                  A      61.155.131.30
 www.51jx8.cn                   A      122.226.102.40
 www.62300931.cn                A      222.77.187.24
 www.86xcsf.cn                  A      222.77.187.24
 www.8866zt.cn                  A      222.77.187.24
 t.aokang.cn                    A      218.75.22.236
 apprise.cn                     A      122.226.102.40
 www.apprise.cn                 A      122.226.102.40
 www.b32233.cn                  A      122.200.71.123
 www.bctx09.cn                  A      222.77.187.24
 beijing110.cn                  A      222.77.187.24
 www.beijing110.cn              A      222.77.187.24
 a.liqiu.bj.cn                  A      61.155.131.30
 aa.liqiu.bj.cn                 A      61.155.131.30
 www.breakingsilence.cn         A      222.35.137.69
 bytxtk.cn                      A      122.226.102.40
 www.bytxtk.cn                  A      122.226.102.40
 www.c2sp.cn                    A      122.226.102.40
 www.carmodel.cn                A      122.226.102.40
 www.cchfound.cn                A      61.155.131.30
 www2.cchfound.cn               A      61.155.131.30
 www.chinabaidianfeng.cn        A      122.226.102.40
 www.chinalaozi.cn              A      122.226.102.40
 www.chinaseedtray.cn           A      121.199.51.27
 www.chuanmu.cn                 A      114.215.30.40
 www.city999.cn                 A      61.155.131.30
 www.cnaabb098.cn               A      122.226.102.40
 www.cnaabb100.cn               A      122.226.102.40
 www.cnjdnk.cn                  A      122.226.102.40
 www.120laolishi.com.cn         A      60.173.10.139
 www.191818.com.cn              A      121.199.254.40
 www.999china.com.cn            A      122.226.102.40
 www.abcd.com.cn                A      122.226.102.40
 www.aggww.com.cn               A      115.28.38.10
 about.aoeoo.com.cn             A      222.77.187.24
 adv.aoeoo.com.cn               A      222.77.187.24
 become.aoeoo.com.cn            A      222.77.187.24
 business.aoeoo.com.cn          A      222.77.187.24
 dygy.aoeoo.com.cn              A      222.77.187.24
 education.aoeoo.com.cn         A      222.77.187.24
 gxdzjx.aoeoo.com.cn            A      222.77.187.24
 gxgb.aoeoo.com.cn              A      222.77.187.24
 gxgs.aoeoo.com.cn              A      222.77.187.24
 gxhq.aoeoo.com.cn              A      222.77.187.24
 hao.aoeoo.com.cn               A      222.77.187.24
 high.aoeoo.com.cn              A      222.77.187.24
 jxdl.aoeoo.com.cn              A      222.77.187.24
 link.aoeoo.com.cn              A      222.77.187.24
 lzmx.aoeoo.com.cn              A      222.77.187.24
 middle.aoeoo.com.cn            A      222.77.187.24
 mzsm.aoeoo.com.cn              A      222.77.187.24
 news.aoeoo.com.cn              A      222.77.187.24
 nnmzjx.aoeoo.com.cn            A      222.77.187.24
 nnsmjg.aoeoo.com.cn            A      222.77.187.24
 oa.aoeoo.com.cn                A      222.77.187.24
 regular.aoeoo.com.cn           A      222.77.187.24
 ruc.aoeoo.com.cn               A      222.77.187.24
 school.aoeoo.com.cn            A      222.77.187.24
 shop.aoeoo.com.cn              A      222.77.187.24
 technical.aoeoo.com.cn         A      222.77.187.24
 technician.aoeoo.com.cn        A      222.77.187.24
 train.aoeoo.com.cn             A      222.77.187.24
 vocational.aoeoo.com.cn        A      61.155.131.30
 www.aoeoo.com.cn               A      222.77.187.24
 apprise.com.cn                 A      222.77.187.24
 www.apprise.com.cn             A      222.77.187.24
 www.cbssedu.com.cn             A      222.77.187.24
 qb.chn-mr.com.cn               A      222.77.187.24
 leads.cjddealer.com.cn         A      122.226.102.40
 cxrc.com.cn                    A      118.123.247.28
 www.cxrc.com.cn                A      118.123.247.28
 www.ex35infiniti.com.cn        A      61.155.131.30
 www.guoyan.com.cn              A      222.77.187.24
 www.hbhlsz.com.cn              A      61.155.131.30
 www.hzqs.com.cn                A      61.155.131.30
 www.infiniti-gline.com.cn      A      61.155.131.30
 www.ipr-std.com.cn             A      222.77.187.24
 www.jasp.com.cn                A      61.155.131.30
 www.kq99.com.cn                A      61.155.131.30
 kygctest.com.cn                A      115.29.172.111
 www.kygctest.com.cn            A      115.29.172.111
 www.letgogo.com.cn             A      222.77.187.24
 www.mana.com.cn                A      122.226.102.40
 www.mbmpv.com.cn               A      122.226.102.40
 www.mbmpv.com.cn               A      222.77.187.24
 www.scutad.com.cn              A      122.226.102.40
 1.songfei.com.cn               A      222.77.187.24
 www1.songfei.com.cn            A      60.173.10.139
 www.thad.com.cn                A      122.226.102.40
 www.tianguan.com.cn            A      122.226.102.40
 test1.ttt.com.cn               A      122.226.102.40
 www.witech.com.cn              A      61.155.131.30
 tp.xqt.com.cn                  A      122.224.186.231
 img.yoger.com.cn               A      222.77.187.24
 imgs.yoger.com.cn              A      222.77.187.24
 uf.yoger.com.cn                A      222.77.187.24
 www.cqhkjp.cn                  A      222.77.187.24
 www.cyexhibit.cn               A      122.226.102.40
 dbgln.cn                       A      61.155.131.30
 www.dbgln.cn                   A      61.155.131.30
 www.doold.cn                   A      122.226.102.40
 bnu-beap.bnu.edu.cn            A      61.155.131.30
 www.ehaier.cn                  A      122.224.186.247
 www.ehaier.cn                  A      122.226.102.40
 www.etb88.cn                   A      122.226.102.40
 www.etplay.cn                  A      222.77.187.24
 www.ezletter.cn                A      121.198.109.169
 www.fsb11.cn                   A      122.226.102.40
 www.fsw365.cn                  A      122.226.102.40
 www.g8gir.cn                   A      122.226.102.40
 www.gandong100.cn              A      122.226.102.40
 www.gd1111.cn                  A      122.226.102.40
 hh168.gov.cn                   A      122.224.186.231
 bbs.hh168.gov.cn               A      122.224.186.231
 w.hh168.gov.cn                 A      222.77.187.24
 ww.hh168.gov.cn                A      222.77.187.24
 www.hh168.gov.cn               A      122.224.186.231
 www.miibeian.gov.cn            A      202.108.212.199
 www.gxy188.cn                  A      122.226.102.40
 www.hnyoule.cn                 A      60.173.10.139
 www.hstx1688.cn                A      222.77.187.24
 www.ht1860.cn                  A      125.65.113.7
 www.hw5d.cn                    A      121.199.51.121
 www.hylym.cn                   A      122.226.102.40
 www.hysgl.cn                   A      122.226.102.40
 www.hywgym.cn                  A      122.226.102.40
 www.infobox.cn                 A      222.77.187.24
 www.ipmirror.cn                A      222.77.187.24
 www.jixie51.cn                 A      60.173.10.139
 jjbj.cn                        A      122.226.102.40
 www.jjbj.cn                    A      122.226.102.40
 www.jwtx2010.cn                A      222.77.187.24
 www.kanglong.cn                A      218.75.22.236
 www.kkk222.cn                  A      122.226.102.40
 kygctest.cn                    A      115.29.172.111
 www.kygctest.cn                A      115.29.172.111
 www.kytbj.cn                   A      222.77.187.24
 www.lastone.cn                 A      222.77.187.24
 www.lbstel.cn                  A      61.155.131.30
 www.lierm.cn                   A      61.155.131.30
 www.linspace.cn                A      122.226.102.40
 www.long120.cn                 A      222.77.187.24
 t0.manyships.cn                A      202.104.188.237
 www.manyships.cn               A      202.104.188.237
 mbmpv.cn                       A      222.77.187.24
 www.mbmpv.cn                   A      222.77.187.24
 www.mgmgm.cn                   A      222.35.140.235
 www.mingdaogong.cn             A      122.226.102.40
 cdn.mobi5.cn                   A      222.77.187.24
 image.mobi5.cn                 A      222.77.187.24
 www.myf.cn                     A      222.77.187.24
 www.myqday.cn                  A      61.155.131.30
 www.ncer.cn                    A      222.77.187.24
 www.nemeibaicha.cn             A      61.155.131.30
 www.88rolex.net.cn             A      60.173.10.139
 www.china-rolex.net.cn         A      60.173.10.139
 www.chnzd.net.cn               A      122.226.102.40
 www.www.gjpk.net.cn            A      61.155.131.30
 www.gspbc.net.cn               A      61.155.131.30
 www.iaechina.net.cn            A      122.226.102.40
 www.ibride.net.cn              A      122.226.102.40
 www.jkw01.net.cn               A      61.155.131.30
 www.softstar.net.cn            A      122.226.102.40
 test.net.cn                    A      61.155.131.30
 aaa.test.net.cn                A      61.155.131.30
 bbb.test.net.cn                A      61.155.131.30
 ccc.test.net.cn                A      61.155.131.30
 ddd.test.net.cn                A      61.155.131.30
 eee.test.net.cn                A      61.155.131.30
 fff.test.net.cn                A      61.155.131.30
 www.net.cn                     A      122.226.102.40
 images1.www.net.cn             A      122.224.186.247
 cy.wzu.net.cn                  A      122.226.102.40
 ltcj.wzu.net.cn                A      122.226.102.40
 wzug10.net.cn                  A      122.226.102.40
 ltcj.wzug10.net.cn             A      122.226.102.40
 www.wzug10.net.cn              A      122.226.102.40
 wzug5.net.cn                   A      122.226.102.40
 cy.wzug5.net.cn                A      122.226.102.40
 jpkc.wzug5.net.cn              A      122.226.102.40
 www.wzug5.net.cn               A      122.226.102.40
 www.zs55.net.cn                A      122.226.102.40
 www.zyxy.net.cn                A      61.155.131.30
 www.niubang.cn                 A      122.226.102.40
 www.facts.org.cn               A      59.151.27.202
 www.seji.org.cn                A      222.77.187.24
 www.pianr.cn                   A      61.155.131.30
 www.qwoiuq.cn                  A      122.226.102.40
 www.scoic.cn                   A      122.226.102.40
 www.shcompre.cn                A      122.226.102.40
 sinotone.cn                    A      222.77.187.24
 www.sinotone.cn                A      222.77.187.24
 sjsd.cn                        A      222.77.187.24
 www.sjsd.cn                    A      222.77.187.24
 www.sxzqsy.cn                  A      222.77.187.24
 buyer.taokuaidi.cn             A      60.173.10.139
 seller.taokuaidi.cn            A      61.155.131.30
 www.tfb360.cn                  A      122.226.102.40
 www.tjycyz.cn                  A      222.77.187.24
 www.tzylbb.cn                  A      122.226.102.40
 www.uiweaa.cn                  A      122.226.102.40
 www.wangsu123.cn               A      61.155.131.30
 week.week9.cn                  A      222.77.187.24
 week1.week9.cn                 A      222.77.187.24
 www.wlsmdx.cn                  A      61.155.131.30
 www.wo911.cn                   A      222.77.187.24
 www.wpeois.cn                  A      122.226.102.40
 www.xiaoboo.cn                 A      122.226.102.40
 www.xsniu.cn                   A      61.155.131.30
 www.xxe2.cn                    A      61.155.131.30
 www.yi71.cn                    A      60.173.10.139
 www.yi71.cn                    A      122.226.102.40
 www.yi71.cn                    A      222.77.187.24
 www.yt1998.cn                  A      61.155.131.30
 www.zfl119.cn                  A      174.37.81.152
 www.zmfk.cn                    A      222.77.187.24
 www.zsdfsdd.cn                 A      122.226.102.40
 www.zsopdiuf.cn                A      122.226.102.40
 www.zt3.cn                     A      112.126.47.92
 www.zzwtkd.cn                  A      122.226.102.40
 01678.com                      A      122.226.102.40
 www.01678.com                  A      122.226.102.40
 www.021nws.com                 A      122.226.102.40
 juan.023116114.com             A      222.77.187.24
 www.0451fck.com                A      122.226.102.40
 www.08xo.com                   A      222.77.187.24
 static.1000soul.com            A      122.226.102.40
 upload.1000soul.com            A      122.226.102.40
 www.100xiao.com                A      122.226.102.40
 www.114-zaixian.com            A      222.77.187.24
 www.114wangluo.com             A      61.155.131.30
 www.114zhuangxiu.com           A      61.155.131.30
 www.13927259999.com            A      61.155.131.30
 139girl.com                    A      122.224.186.231
 www.139girl.com                A      122.224.186.231
 www.14kf.com                   A      222.77.187.24
 www.1616la.com                 A      122.226.102.40
 www.168jd.com                  A      122.226.102.40
 www2.1testcdn.com              A      122.226.102.40
 2227222.com                    A      122.226.102.40
 www.2227222.com                A      122.226.102.40
 www.28827736.com               A      61.155.131.30
 0731.300311.com                A      122.226.102.40
 www.300311.com                 A      60.173.10.139
 333567.com                     A      122.226.102.40
 www.333567.com                 A      122.226.102.40
 3337333.com                    A      122.226.102.40
 www.3337333.com                A      122.226.102.40
 www.33519.com                  A      122.226.102.40
 www.365epin.com                A      222.77.187.24
 www.365inter.com               A      61.155.131.30
 www.365tuku.com                A      59.45.164.26
 www.39685.com                  A      222.77.187.24
 www.464gck.com                 A      61.155.131.30
 www.5151sc.com                 A      61.155.131.30
 bbs.5173df1.com                A      58.215.240.173
 bbs.5173df1.com                A      61.152.221.169
 www.51byky.com                 A      61.155.131.30
 www.51fkzc.com                 A      122.226.102.40
 www.51jimgem.com               A      222.77.187.24
 51sports.com                   A      122.226.102.40
 api.51sports.com               A      122.226.102.40
 img.51sports.com               A      122.226.102.40
 www.51sports.com               A      122.226.102.40
 555456.com                     A      122.70.145.185
 www.555456.com                 A      122.70.145.185
 www.62697777.com               A      222.77.187.24
 www.626jd.com                  A      122.226.102.40
 www.67716771.com               A      222.77.187.24
 www.693333.com                 A      122.226.102.40
 784444.com                     A      122.226.102.40
 www.784444.com                 A      122.226.102.40
 www.7lgw.com                   A      61.155.131.30
 www.81fuke.com                 A      222.77.187.24
 www.81gk.com                   A      222.77.187.24
 www.83798531.com               A      122.226.102.40
 www.86117711.com               A      60.173.10.139
 www.86117711.com               A      122.226.102.40
 url.88226.com                  A      222.77.187.24
 888004.com                     A      122.226.102.40
 so.888004.com                  A      122.226.102.40
 www.888004.com                 A      122.70.145.98
 download1.88918.com            A      122.226.102.40
 91bjb.com                      A      222.77.187.24
 apple.91bjb.com                A      222.77.187.24
 mobile.91bjb.com               A      222.77.187.24
 part.91bjb.com                 A      222.77.187.24
 thinkpad.91bjb.com             A      222.77.187.24
 www.91bjb.com                  A      222.77.187.24
 www.94gx.com                   A      222.77.187.24
 www.9999tf.com                 A      222.77.187.24
 99hm.com                       A      122.226.102.40
 www.99hm.com                   A      122.226.102.40
 img.a01688.com                 A      112.125.33.171
 www.abc.com                    A      122.226.102.40
 www2.abc.com                   A      122.226.102.40
 abcd.com                       A      122.226.102.40
 test1.abcd.com                 A      122.226.102.40
 www.abcd.com                   A      122.226.102.40
 sh.abcpiao.com                 A      61.155.131.30
 acgbag.com                     A      122.226.102.40
 www.acgbag.com                 A      122.226.102.40
 www.aiwa100.com                A      222.77.187.24
 www.aokang.com                 A      218.75.22.236
 www.aokangleather.com          A      218.75.22.236
 www.asdads.com                 A      61.133.114.67
 www.asiaqs.com                 A      61.155.131.30
 dg.autotwo.com                 A      211.157.109.105
 fs.autotwo.com                 A      211.157.109.105
 gz.autotwo.com                 A      211.157.109.105
 sz.autotwo.com                 A      211.157.109.105
 www.autotwo.com                A      211.157.109.105
 zs.autotwo.com                 A      211.157.109.105
 www.banzhenxueli.com           A      61.155.131.30
 www.baobaog.com                A      222.77.187.24
 www.batastyle.com              A      122.224.186.231
 be080.com                      A      61.155.131.30
 www.be080.com                  A      61.155.131.30
 www.beijing110.com             A      222.77.187.24
 beilumarket.com                A      61.155.131.30
 www.beilumarket.com            A      61.155.131.30
 bet2888.com                    A      61.155.131.30
 www.bet2888.com                A      61.155.131.30
 bet8866.com                    A      61.155.131.30
 www.bet8866.com                A      61.155.131.30
 www.beylai.com                 A      122.226.102.40
 bijiaqi.com                    A      121.9.210.122
 www.bijiaqi.com                A      121.9.210.122
 www1.bijiaqi.com               A      121.9.210.122
 www4.bijiaqi.com               A      121.9.210.122
 biosou.com                     A      122.224.33.56
 www.bjsabr.com                 A      122.226.102.40
 www.blcolor.com                A      222.77.187.24
 bw0022.com                     A      27.98.205.127
 ra.bw0022.com                  A      27.98.205.127
 www.bw0022.com                 A      27.98.205.127
 bw0033.com                     A      180.214.166.93
 ra.bw0033.com                  A      180.214.166.93
 www.bw0033.com                 A      180.214.166.93
 ag.bw1188.com                  A      218.213.74.133
 bytxtk.com                     A      122.226.102.40
 so.bytxtk.com                  A      122.226.102.40
 www.bytxtk.com                 A      122.226.102.40
 a1.caixin666.com               A      202.181.211.230
 aa.caixin666.com               A      202.104.188.237
 bb.caixin666.com               A      202.104.188.237
 cc.caixin666.com               A      202.104.188.237
 dd.caixin666.com               A      202.104.188.237
 q1.caixin666.com               A      202.181.211.230
 ss.caixin666.com               A      202.181.211.230
 x1.caixin666.com               A      222.77.187.24
 b2.caiyi666.com                A      202.104.188.237
 www.cav9999.com                A      122.226.102.40
 www.cctaw.com                  A      122.224.186.231
 www.cd-motorshow.com           A      122.226.102.40
 cheapmmogold.com               A      222.77.187.24
 www.cheapmmogold.com           A      222.77.187.24
 chinacnit.com                  A      222.77.187.24
 www.chinaheaters.com           A      122.226.102.40
 www.chinalawinfo.com           A      222.77.187.24
 www.chinaseedtray.com          A      121.199.51.27
 www.chuanmu88.com              A      121.199.115.119
 ciicsh.com                     A      222.77.187.24
 www.ciicsh.com                 A      222.77.187.24
 cmrol.com                      A      122.226.102.40
 www.cmrol.com                  A      122.226.102.40
 www.cn-nf.com                  A      122.226.102.40
 www.cn113.com                  A      122.226.102.40
 www.cnffsw.com                 A      222.77.187.24
 www.cnsealant.com              A      122.226.102.40
 J2.corecapitalchina.com        A      122.226.102.40
 www.cpjrw.com                  A      61.155.131.30
 www.cuotiben.com               A      61.155.131.30
 fighting.cuucee.com            A      114.80.97.151
 fitness.cuucee.com             A      114.80.97.151
 health.cuucee.com              A      114.80.97.151
 massage.cuucee.com             A      114.80.97.151
 racket.cuucee.com              A      114.80.97.151
 team.cuucee.com                A      114.80.97.151
 union.cuucee.com               A      114.80.97.151
 venues.cuucee.com              A      114.80.97.151
 cdn.dg999.com                  A      222.77.187.24
 kf.dg999.com                   A      222.77.187.24
 www.dg999.com                  A      222.77.187.24
 www.dianzigou.com              A      222.77.187.24
 www.dlrlw.com                  A      222.77.187.24
 www.dnszlw.com                 A      122.226.102.40
 test.doocn.com                 A      122.226.102.40
 www.doocn.com                  A      122.226.102.40
 www.dtybj.com                  A      222.77.187.24
 www.e-hongdou.com              A      122.70.145.85
 code.easyye.com                A      122.226.102.40
 csy.easyye.com                 A      122.226.102.40
 cnc.eaysun.com                 A      202.104.188.237
 new.ehaier.com                 A      211.157.102.190
 www.ehaier.com                 A      211.157.102.190
 www.eke100.com                 A      222.77.187.24
 www.enfa-discovery.com         A      119.145.148.180
 www.eyou56.com                 A      222.77.187.24
 www.fapiao888888.com           A      122.226.102.40
 26.fblife.com                  A      222.77.187.24
 fenpier.com                    A      222.77.187.24
 ftp.fenpier.com                A      222.77.187.24
 www.fenpier.com                A      61.155.131.30
 foodwearcollection.com         A      202.104.188.237
 foodwearcollection.com         A      222.77.187.24
 www.foodwearcollection.com     A      222.77.187.24
 fuguiniao.com                  A      112.126.46.43
 www.fuguiniao.com              A      112.126.46.43
 www.fukesh.com                 A      222.77.187.24
 www.furuxiao.com               A      122.224.186.231
 www.fzytrade.com               A      121.199.61.223
 game023.com                    A      122.226.102.40
 www.game023.com                A      122.226.102.40
 gandong100.com                 A      122.226.102.40
 www.gandong100.com             A      122.226.102.40
 www.gaoyinlu.com               A      122.226.102.40
 baidu.gb020.com                A      122.226.102.40
 www.gb020.com                  A      122.226.102.40
 news.gitom.com                 A      122.224.186.231
 www.gitom.com                  A      122.224.186.231
 www.globalkunqu.com            A      222.77.187.24
 go99999.com                    A      222.77.187.24
 www.go99999.com                A      222.77.187.24
 cdn2.gotoread.com              A      222.77.187.24
 www.gree.com                   A      202.104.188.237
 www.gree.com                   A      222.77.187.24
 www.gstx98.com                 A      222.77.187.24
 www.guoji120.com               A      222.77.187.24
 www.guoxunkeji.com             A      222.77.187.24
 gzhaoaigou.com                 A      121.198.101.220
 www.gzhaoaigou.com             A      121.198.101.220
 www.gzqlkj.com                 A      60.173.10.139
 www.h-gy.com                   A      211.157.109.103
 ha883.com                      A      222.77.187.24
 ra.ha883.com                   A      222.77.187.24
 www.ha883.com                  A      222.77.187.24
 ha889.com                      A      27.98.205.127
 ag.ha889.com                   A      202.104.188.237
 www.ha889.com                  A      222.77.187.24
 a1.hao1533.com                 A      222.77.187.24
 a2.hao1533.com                 A      222.77.187.24
 a3.hao1533.com                 A      222.77.187.24
 a4.hao1533.com                 A      222.77.187.24
 www.hebaofu.com                A      122.226.102.40
 backoffice.heyibao.com         A      202.102.95.136
 usercenter.heyibao.com         A      202.102.95.136
 hg0330.com                     A      202.104.188.237
 ra.hg0330.com                  A      202.104.188.237
 www.hg0330.com                 A      202.104.188.237
 hg0800.com                     A      27.98.205.127
 ra.hg0800.com                  A      27.98.205.127
 www.hg0800.com                 A      27.98.205.127
 www.hg0881.com                 A      222.77.187.24
 hg0882.com                     A      202.104.188.237
 ra.hg0882.com                  A      202.104.188.237
 www.hg0882.com                 A      202.104.188.237
 hg0883.com                     A      222.77.187.24
 ra.hg0883.com                  A      222.77.187.24
 www.hg0883.com                 A      222.77.187.24
 hg8826.com                     A      202.66.64.78
 ra.hg8826.com                  A      202.66.64.78
 www.hg8826.com                 A      202.66.64.78
 hg8832.com                     A      222.77.187.24
 ra.hg8832.com                  A      222.77.187.24
 www.hg8832.com                 A      222.77.187.24
 hg8836.com                     A      180.214.166.93
 ra.hg8836.com                  A      180.214.166.93
 www.hg8836.com                 A      180.214.166.93
 hg8839.com                     A      202.104.188.237
 www.hg8839.com                 A      202.104.188.237
 www.hh3611.com                 A      122.226.102.40
 dog.hi-cdn.com                 A      218.244.147.242
 fff.hi-cdn.com                 A      122.226.102.40
 test.hi-cdn.com                A      218.244.147.242
 www.hi-cdn.com                 A      218.244.147.242
 www.hichina.com.hichina.com    A      122.226.102.40
 www.hlszgc.com                 A      61.155.131.30
 img.hnwww.com                  A      222.186.9.56
 www.hongwenboya.com            A      122.226.102.40
 www.hqyj.com                   A      61.155.131.30
 www.hqywl.com                  A      222.77.187.24
 www.ht3g.com                   A      218.206.29.22
 www.hteke.com                  A      202.104.188.237
 www.huatinschool.com           A      222.35.139.162
 www.hw5d.com                   A      121.199.51.121
 www.hyqm.com                   A      121.198.26.240
 www.ip138.com                  A      122.226.102.40
 www.jgyyfk.com                 A      61.155.131.30
 www.jh308.com                  A      122.226.102.40
 www.jiejiuwang.com             A      60.173.10.139
 www.jinghong168.com            A      119.146.223.210
 www.jlbynh.com                 A      122.226.102.40
 jlniu.com                      A      61.155.131.30
 www.jlniu.com                  A      61.155.131.30
 www.js-18.com                  A      122.226.102.40
 club.kaiwind.com               A      114.80.119.150
 de.kaiwind.com                 A      114.80.119.150
 english.kaiwind.com            A      222.77.187.24
 es.kaiwind.com                 A      114.80.119.150
 fr.kaiwind.com                 A      114.80.119.150
 jp.kaiwind.com                 A      114.80.119.150
 kr.kaiwind.com                 A      114.80.119.150
 media.kaiwind.com              A      114.80.119.150
 ru.kaiwind.com                 A      114.80.119.150
 www.kaiwind.com                A      122.226.102.40
 www.kangh.com                  A      61.155.131.30
 www.keaipin.com                A      61.155.131.30
 www.kelegm.com                 A      114.80.217.236
 www.kobag.com                  A      222.77.187.24
 www.kpchuanmu.com              A      114.215.30.40
 www.ksgjw.com                  A      222.77.187.24
 www.kule189.com                A      222.77.187.24
 static.kuyibao.com             A      202.102.95.136
 www.kuyibao.com                A      202.102.95.136
 www.kygctest.com               A      115.29.172.111
 www.laitroses.com              A      122.226.102.40
 legendventure.com              A      222.77.187.24
 letgogo.com                    A      122.226.102.40
 www.letgogo.com                A      222.77.187.24
 dzw.lvdoing.com                A      122.226.102.40
 www.lvdoing.com                A      122.226.102.40
 www.ly-qiche.com               A      61.155.131.30
 www.macau-airport.com          A      61.155.131.30
 t0.manyships.com               A      210.14.71.44
 www.manyships.com              A      210.14.71.44
 www.marvellousreplica.com      A      122.226.102.40
 www.www.marvellousreplica.com  A      218.61.5.83
 wwww.marvellousreplica.com     A      122.226.102.40
 www.mbmpv.com                  A      122.226.102.40
 www.mduochina.com              A      222.35.140.58
 www.meetoy.com                 A      122.226.102.40
 www.meggiewoo.com              A      122.224.186.231
 www.meichenggo.com             A      222.77.187.24
 www.meiliyihao.com             A      222.77.187.24
 www.meiries.com                A      218.75.22.236
 mengdaiwei.com                 A      222.77.187.24
 www.mengdaiwei.com             A      222.77.187.24
 en.mesnac.com                  A      122.70.128.146
 www.mesnac.com                 A      122.70.128.146
 www.miaogu.com                 A      119.145.148.127
 mifan365.com                   A      122.226.102.40
 www.mifan365.com               A      122.226.102.40
 yantai.mifan365.com            A      122.226.102.40
 www.mocartoon.com              A      222.77.187.24
 www.msdnba.com                 A      122.226.102.40
 www.my0214.com                 A      122.226.102.40
 www.nanpu120.com               A      222.77.187.24
 www.newjemsin.com              A      222.77.187.24
 www.newwindvane.com            A      218.61.5.83
 www.nihontu.com                A      222.77.187.24
 www.njjiangzuo.com             A      202.104.188.237
 www.nxjbzx.com                 A      61.155.131.30
 ok.optima-china.com            A      122.226.102.40
 www.optima-china.com           A      122.226.102.40
 www.otcotc.com                 A      122.226.102.40
 image.ourbloom.com             A      222.77.187.24
 www.ourbloom.com               A      60.173.10.139
 www.pearln.com                 A      122.226.102.40
 www.pfhzp.com                  A      202.104.188.237
 pig78.com                      A      222.186.48.142
 www.pig78.com                  A      222.186.48.142
 www.pkppmm.com                 A      122.226.102.40
 pp454.com                      A      222.77.187.24
 www.pp454.com                  A      222.77.187.24
 www.qhkj.com                   A      122.70.146.88
 www.qw8888.com                 A      122.226.102.40
 www.r3wx.com                   A      61.155.131.30
 ra0860.com                     A      122.224.186.247
 ag.ra0860.com                  A      122.224.186.247
 www.ra0860.com                 A      61.155.131.30
 ra8558.com                     A      61.155.131.30
 ag.ra8558.com                  A      61.155.131.30
 www.ra8558.com                 A      61.155.131.30
 ra8892.com                     A      61.155.131.30
 ag.ra8892.com                  A      61.155.131.30
 vip222.ra8892.com              A      61.155.131.30
 www.ra8892.com                 A      61.155.131.30
 re0880.com                     A      222.77.187.24
 ra.re0880.com                  A      222.77.187.24
 vip222.re0880.com              A      202.104.188.237
 www.re0880.com                 A      222.77.187.24
 re3883.com                     A      180.214.166.93
 ra.re3883.com                  A      180.214.166.93
 www.re3883.com                 A      222.77.187.24
 re8800.com                     A      222.77.187.24
 ag.re8800.com                  A      61.155.131.30
 www.re8800.com                 A      61.155.131.30
 re8806.com                     A      122.224.186.247
 ag.re8806.com                  A      122.224.186.247
 www.re8806.com                 A      61.155.131.30
 re9889.com                     A      222.77.187.24
 ra.re9889.com                  A      222.77.187.24
 www.re9889.com                 A      222.77.187.24
 www.rent8890.com               A      122.226.102.40
 www.rirituan.com               A      222.77.187.24
 eclass.rongshiedu.com          A      122.226.102.40
 www.rwwwx.com                  A      61.155.131.30
 rz0099.com                     A      222.77.187.24
 ra.rz0099.com                  A      222.77.187.24
 www.rz0099.com                 A      222.77.187.24
 rz0990.com                     A      180.214.166.93
 ra.rz0990.com                  A      180.214.166.93
 www.rz0990.com                 A      180.214.166.93
 rz8866.com                     A      210.184.30.133
 ag.rz8866.com                  A      210.184.30.133
 www.rz8866.com                 A      210.184.30.133
 rz8889.com                     A      61.155.131.30
 ag.rz8889.com                  A      61.155.131.30
 www.rz8889.com                 A      61.155.131.30
 rz8890.com                     A      61.155.131.30
 ag.rz8890.com                  A      61.155.131.30
 www.rz8890.com                 A      61.155.131.30
 rz8896.com                     A      122.226.102.40
 ag.rz8896.com                  A      122.226.102.40
 www.rz8896.com                 A      122.226.102.40
 rz8898.com                     A      61.155.131.30
 ag.rz8898.com                  A      61.155.131.30
 www.rz8898.com                 A      61.155.131.30
 rz8989.com                     A      61.155.131.30
 ag.rz8989.com                  A      61.155.131.30
 www.rz8989.com                 A      61.155.131.30
 rz9900.com                     A      61.155.131.30
 ag.rz9900.com                  A      61.155.131.30
 www.rz9900.com                 A      61.155.131.30
 rz9906.com                     A      122.226.102.40
 ag.rz9906.com                  A      122.226.102.40
 www.rz9906.com                 A      122.226.102.40
 rz9909.com                     A      61.155.131.30
 ag.rz9909.com                  A      61.155.131.30
 www.rz9909.com                 A      61.155.131.30
 www.sdjk666.com                A      122.226.102.40
 www.selfapp.com                A      222.77.187.24
 www.shangshangwang.com         A      222.77.187.24
 www.shks.com                   A      122.224.186.231
 www.shucaitang.com             A      222.35.136.216
 renwu.shuijunwang.com          A      222.77.187.24
 www.shuijunwang.com            A      222.77.187.24
 www.sjera.com                  A      58.215.240.173
 www.sjera.com                  A      61.152.221.169
 www.sjera.com                  A      114.80.119.250
 www.sogou58.com                A      61.155.131.30
 www.soovs.com                  A      61.155.131.30
 soxiao.com                     A      61.155.131.30
 www.soxiao.com                 A      61.155.131.30
 vip.susanexpress.com           A      61.155.131.30
 www.susanexpress.com           A      61.155.131.30
 www.syw666.com                 A      59.36.98.8
 www.sz181.com                  A      122.226.102.40
 www.tayasaf.com                A      61.155.131.30
 www.test-aaaa.com              A      122.226.102.40
 www2.test-aaaa.com             A      122.226.102.40
 11.test-hichina.com            A      122.226.102.40
 33.test-hichina.com            A      117.34.4.27
 44.test-hichina.com            A      117.34.4.27
 aaa.test-hichina.com           A      117.34.4.27
 bb.test-hichina.com            A      117.34.4.27
 cc.test-hichina.com            A      117.34.4.27
 www.test3.com                  A      122.226.102.40
 www3.test3.com                 A      122.226.102.40
 www1.testabcd.com              A      122.226.102.40
 www3.testabcd.com              A      122.224.186.247
 test.testin.com                A      60.173.10.139
 www.testin.com                 A      60.173.10.139
 tk92.com                       A      122.226.102.40
 www.tk92.com                   A      122.226.102.40
 www.trtfw.com                  A      61.155.131.30
 static.tsingming.com           A      122.226.102.40
 www.tuanp.com                  A      122.226.102.40
 www.tutorbeijing.com           A      122.226.102.40
 www.tuzhu001.com               A      222.77.187.24
 www.twlsp.com                  A      60.173.10.139
 uu0033.com                     A      222.77.187.24
 ra.uu0033.com                  A      222.77.187.24
 www.uu0033.com                 A      222.77.187.24
 uu0099.com                     A      222.77.187.24
 ra.uu0099.com                  A      222.77.187.24
 www.uu0099.com                 A      222.77.187.24
 uu0806.com                     A      61.155.131.30
 ag.uu0806.com                  A      61.155.131.30
 www.uu0806.com                 A      61.155.131.30
 uu0886.com                     A      61.155.131.30
 ag.uu0886.com                  A      61.155.131.30
 www.uu0886.com                 A      61.155.131.30
 uu6886.com                     A      122.226.102.40
 ag.uu6886.com                  A      122.226.102.40
 www.uu6886.com                 A      122.226.102.40
 www.vinteail-s.com             A      122.226.102.40
 visasgroup.com                 A      222.73.40.58
 www.visasgroup.com             A      222.73.40.58
 www.vivbeauty.com              A      122.70.144.116
 company.vutests.com            A      61.155.131.30
 www.vutests.com                A      60.173.10.139
 www.wav888.com                 A      122.226.102.40
 www.wawa8888.com               A      222.77.187.24
 www.weiminwuye.com             A      61.155.131.30
 www.wowul.com                  A      61.155.131.30
 www.xfland.com                 A      61.155.131.30
 www.xgzm.com                   A      121.199.104.155
 www.xh120ylb.com               A      122.226.102.40
 xhstv.com                      A      222.77.187.24
 www.xhstv.com                  A      61.133.114.71
 www.xiboda.com                 A      222.77.187.24
 www.xihutuan.com               A      222.77.187.24
 img01.xiudang.com              A      222.77.187.24
 img02.xiudang.com              A      222.77.187.24
 www.xiugu.com                  A      119.145.148.104
 www.xjyy120.com                A      222.77.187.24
 www.xsdnz.com                  A      222.77.187.24
 www.xsniu.com                  A      61.155.131.30
 baidu.xzgbyy.com               A      122.224.186.231
 www.xzgbyy.com                 A      122.224.186.231
 y060.com                       A      221.122.67.34
 www.y060.com                   A      221.122.67.34
 y068.com                       A      61.155.131.30
 www.y068.com                   A      122.226.102.40
 y0888.com                      A      202.104.188.237
 www.y0888.com                  A      202.104.188.237
 y8899.com                      A      61.155.131.30
 www.y8899.com                  A      61.155.131.30
 www.ychlj.com                  A      222.77.187.24
 www.ydzhong.com                A      222.77.187.24
 yescq.com                      A      203.93.239.101
 www.yescq.com                  A      60.173.10.139
 yhyyhh.com                     A      61.155.131.30
 www.yhyyhh.com                 A      61.155.131.30
 yi71.com                       A      222.35.140.235
 bbs.yi71.com                   A      222.35.140.235
 exam.yi71.com                  A      222.35.140.235
 home.yi71.com                  A      222.35.140.235
 hs.yi71.com                    A      222.35.140.235
 m.yi71.com                     A      222.35.140.235
 www.yi71.com                   A      222.35.140.235
 www.yingyangshi.com            A      122.226.102.40
 www.ylbjk666.com               A      122.226.102.40
 www.ylbkf010.com               A      122.226.102.40
 www.youjang.com                A      122.226.102.40
 www.yt1998.com                 A      61.155.131.30
 www.yuebafang.com              A      122.226.102.40
 www.yw259.com                  A      122.224.186.231
 www.ywhqs.com                  A      222.77.187.24
 www.yyqcw.com                  A      222.77.187.24
 www.zfydt.com                  A      122.226.102.40
 www.zg115.com                  A      122.226.102.40
 021.zggb120.com                A      122.226.102.40
 baidu.zggb120.com              A      122.226.102.40
 www.zggb120.com                A      122.226.102.40
 www.zgyywz.com                 A      122.226.102.40
 www.zhifang.com                A      119.145.148.106
 zhuyijie.com                   A      61.155.131.30
 www.zhuyijie.com               A      61.155.131.30
 www.ztsfc.com                  A      122.226.102.40
 www.zu8888.com                 A      222.77.187.24
 www.zul9999.com                A      112.126.48.68
 cad.zwcad.com                  A      222.77.187.24
 www.zysda.com                  A      122.226.102.40
 www.zzlanqi.com                A      122.226.102.40
 www.zzywzg.com                 A      121.198.86.121
 ftp                            A      61.172.244.108
 www.joyo.hk                    A      122.226.102.40
 www.168jd.info                 A      122.226.102.40
 c.5LIN.info                    A      222.77.187.24
 v.5LIN.info                    A      222.77.187.24
 www.bjdhw.info                 A      61.155.131.30
 www.bjjkw.info                 A      61.155.131.30
 www.fsbtw.info                 A      122.226.102.40
 www.jh263.info                 A      61.155.131.30
 www.jj123.info                 A      122.226.102.40
 www.jp6981.info                A      122.224.186.231
 www.jr001.info                 A      61.155.131.30
 www.ktoo58.info                A      61.155.131.30
 www.ss222.info                 A      222.77.187.24
 www.wanhuadoors.info           A      61.155.131.30
 www.weyy.info                  A      61.155.131.30
 www.yw259.info                 A      122.224.186.231
 customer.ipmirror              A      222.77.187.24
 www.amarante.co.kr             A      122.226.102.40
 bole.me                        A      222.77.187.24
 www.bole.me                    A      222.77.187.24
 www.gandong100.mobi            A      222.77.187.24
 www.114tongcheng.net           A      61.155.131.30
 www.114wangluo.net             A      61.155.131.30
 www.114zaixian.net             A      222.77.187.24
 www.178chajian.net             A      222.77.187.24
 www.39kang.net                 A      61.155.131.30
 www.51accp.net                 A      61.155.131.30
 784444.net                     A      122.226.102.40
 www.784444.net                 A      122.226.102.40
 www.ailinju.net                A      118.123.15.93
 www.chiensemedicines.net       A      222.77.187.24
 csy.easyye.net                 A      222.77.187.24
 www.fast-cdn.net               A      122.224.186.247
 www.fjuc.net                   A      122.226.102.40
 www.fuyinjiayuan.net           A      202.104.188.237
 www.fuyinjiayuan.net           A      222.77.187.24
 www.gandong100.net             A      122.226.102.40
 www.gmacsaic.net               A      61.155.131.30
 www.www.hi-cdn.net             A      122.226.102.40
 www2.www.hi-cdn.net            A      122.226.102.40
 www1.www.hicdn.net             A      122.226.102.40
 test.huicard.net               A      122.226.102.40
 www.jz3w.net                   A      61.155.131.30
 www.ljfk120.net                A      122.224.186.231
 lsjmw.net                      A      122.224.186.231
 www.lsjmw.net                  A      122.224.186.231
 www.macaumonthly.net           A      122.226.102.40
 www.nc94.net                   A      61.155.131.30
 scdxcfo.net                    A      115.29.186.147
 www.scdxcfo.net                A      115.29.186.147
 vip.susanexpress.net           A      61.155.131.30
 www.susanexpress.net           A      61.155.131.30
 www.syw66.net                  A      59.36.98.8
 www.tandaifu.net               A      222.77.187.24
 www.telemetrycn.net            A      122.226.102.40
 www.telemetrycn.net            A      222.77.187.24
 www.togobao.net                A      118.123.15.93
 www.v1photo.net                A      61.155.131.30
 y080.net                       A      61.155.131.30
 www.y080.net                   A      61.155.131.30
 mall.yewl.net                  A      222.77.187.24
 yggame.net                     A      112.126.38.161
 www.yggame.net                 A      112.126.38.161
 www.ylpfb.net                  A      122.226.102.40
 www.zbbebh.net                 A      222.77.187.24
 ns1                            A      222.35.79.176
 ns2                            A      218.244.147.133
 www.114zaixian.org             A      222.77.187.24
 www.3g-edu.org                 A      61.155.131.30
 www.aixin0743.org              A      222.186.48.131
 www.cchfound.org               A      122.224.186.231
 www.embedu.org                 A      61.155.131.30
 www.huzhuyou.org               A      122.226.102.40
 www.meixiong.org               A      222.77.187.24
 www.qingchundou.org            A      222.77.187.24
 www.tgcl.org                   A      122.226.102.40
 www.wztcf.org                  A      218.75.22.236
 www.zsfp.org                   A      122.226.102.40
 visas.to                       A      222.73.40.58
 www.visas.to                   A      222.73.40.58

修复方案：

做ACL

版权声明：转载请注明来源无敌L.t.H@乌云

漏洞回应

厂商回应：

危害等级：无影响厂商忽略

忽略时间：2012-09-25 12:34

厂商回复：

漏洞评价：

2013-01-04 14:31 | 疯狗 ( 实习白帽子 | Rank:44 漏洞数:2 | 阅尽天下漏洞，心中自然无码。)

元旦发生的事情让我又想起了这个漏洞。。。

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-012454

漏洞标题：万网CDN域传送漏洞

相关厂商：万网

漏洞作者：无敌L.t.H

提交时间：2012-09-20 12:34

修复时间：2012-09-25 12:34

公开时间：2012-09-25 12:34

漏洞类型：系统/服务运维配置不当

危害等级：中

自评Rank：5

漏洞状态：漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源无敌L.t.H@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评论

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2012-012454

漏洞标题：万网CDN域传送漏洞

相关厂商：万网

漏洞作者： 无敌L.t.H

提交时间：2012-09-20 12:34

修复时间：2012-09-25 12:34

公开时间：2012-09-25 12:34

漏洞类型：系统/服务运维配置不当

危害等级：中

自评Rank：5

漏洞状态：漏洞已经通知厂商但是厂商忽略漏洞

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2012-012454"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 无敌L.t.H@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评论

漏洞概要关注数(24) 关注此漏洞

漏洞作者：无敌L.t.H

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源无敌L.t.H@乌云