漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2012-06362
漏洞标题:新浪某站数据库信息泄露
相关厂商:新浪
漏洞作者: Errorera
提交时间:2012-04-25 02:57
修复时间:2012-06-09 02:58
公开时间:2012-06-09 02:58
漏洞类型:网络敏感信息泄漏
危害等级:中
自评Rank:10
漏洞状态:厂商已经确认
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2012-04-25: 细节已通知厂商并且等待厂商处理中
2012-04-25: 厂商已经确认,细节仅向厂商公开
2012-05-05: 细节向核心白帽子及相关领域专家公开
2012-05-15: 细节向普通白帽子公开
2012-05-25: 细节向实习白帽子公开
2012-06-09: 细节向公众公开
简要描述:
同文件下出现多个数据库信息包括内网IP
详细说明:
http://bbs.life.sina.com.cn/info.php
漏洞证明:
Array
(
[SCRIPT_URL] => /info.php
[SCRIPT_URI] => http://bbs.life.sina.com.cn/info.php
[SINASRV_GLOBAL_MEMCACHED_SERVERS] => 10.55.22.21:7601 10.55.22.115:7601 10.55.22.80:7601 10.55.22.26:7601 10.55.22.164:7601 10.55.22.197:7601 10.55.22.198:7601
[SINASRV_MEMCACHED_SERVERS] => 10.55.22.21:7601 10.55.22.115:7601 10.55.22.80:7601 10.55.22.26:7601 10.55.22.164:7601 10.55.22.197:7601 10.55.22.198:7601
[SINASRV_MEMCACHED_HOST] => 127.0.0.1
[SINASRV_MEMCACHED_PORT] => 7600
[SINASRV_DATA_DIST_SERVER] => wvfs2.mars.grid.sina.com.cn
[SINASRV_DATA_DIST_PORT] => 8080
[SINASRV_ZONE_IDC] => XD
[SINASRV_ZONE_ISP] => CNC
[SINASRV_ZONE_ID] => 010201
[SINASRV_ROLE] => Web2
[SINASRV_OUTIP] => 10.54.22.47
[SINASRV_INTIP] => 10.55.22.47
[SINASRV_TTF_PATH] => /usr/local/sinasrv2/lib/X11/fonts/TTF
[SINASRV_WVFS_SERVERS] => wvfs2.mars.grid.sina.com.cn:8090 wvfs2.orion.grid.sina.com.cn:8090
[SINASRV_RVFS_SERVERS] => rvfs2.mars.grid.sina.com.cn:80 rvfs2.orion.grid.sina.com.cn:80
[SINASRV_CACHE_DOMAINS] => cache.mars.sina.com.cn cache.orion.sina.com.cn cache.aries.sina.com.cn cache.atlas.sina.com.cn
[SQUID_PURGE_API] => http://10.44.6.245/squidclear/ http://10.29.10.251/squidclear/
[SQUID_PURGE_ID] => dpool
[SQUID_PURGE_PROJECT] => all
[SQUID_PURGE_HOST] => www.sc.sina.com.cn
[SINASRV_SQUID_PURGE_API] => http://10.44.6.245/squidclear/ http://10.29.10.251/squidclear/
[SINASRV_SQUID_PURGE_ID] => dpool
[SINASRV_SQUID_PURGE_PROJECT] => all
[SINASRV_SQUID_PURGE_HOST] => www.sc.sina.com.cn
[SINASRV_DPMAIL_HOST] => 10.44.6.21
[SINASRV_DPMAIL_URL] => http://10.44.6.21/mailservice/api.php
[SINASRV_COUNTER_SERVICE_MASTER] => counteri.mars.grid.sina.com.cn:8000
[SINASRV_COUNTER_SERVICE_SLAVE] => 10.55.22.65:8000
[SINASRV_COUNTER_SERVICE_RESTRICT] => 1
[SINASRV_SIMPLEDB_SERVICE] => 1
[SINASRV_SIMPLEDB_SERVICE_RESTRICT] => 1
[SINASRV_VERSION] => 2
[SINASRV_DATA_DIR] => /data1/www/data/bbs.life.sina.com.cn/
[SINASRV_CACHE_DIR] => /data1/www/cache/bbs.life.sina.com.cn/
[SINASRV_PRIVDATA_DIR] => /data1/www/privdata/bbs.life.sina.com.cn/
[SINASRV_APPLOGS_DIR] => /data1/www/applogs/bbs.life.sina.com.cn/
[SINASRV_DATA_URL] => http://bbs.life.sina.com.cn/data
[SINASRV_CACHE_URL] => http://bbs.life.sina.com.cn/cache
[SINASRV_NDATA_CACHE_URL] => http://etch.s.dpool.sina.com.cn/nd/bbslife/
[SINASRV_DB_HOST] => m3380i.mars.grid.sina.com.cn
[SINASRV_DB_HOST_R] => s3380i.mars.grid.sina.com.cn
[SINASRV_DB_PORT] => 3380
[SINASRV_DB_NAME] => bbslife
[SINASRV_DB_USER] => bbslife
[SINASRV_DB_PASS] => 56HdhGza1Wa
[SINASRV_DB_PORT_R] => 3380
[SINASRV_DB_NAME_R] => bbslife
[SINASRV_DB_USER_R] => bbslife_r
[SINASRV_DB_PASS_R] => d7ygDH9ydc3
[SINASRV_DB2_HOST] => m3320i.mars.grid.sina.com.cn
[SINASRV_DB2_HOST_R] => s3320i.mars.grid.sina.com.cn
[SINASRV_DB2_PORT] => 3320
[SINASRV_DB2_NAME] => life
[SINASRV_DB2_USER] => life
[SINASRV_DB2_PASS] => 1wSeH45tGc
[SINASRV_DB2_PORT_R] => 3320
[SINASRV_DB2_NAME_R] => life
[SINASRV_DB2_USER_R] => life_r
[SINASRV_DB2_PASS_R] => T5Gbv3edC45f
[SINASRV_MEMCACHED_KEY_PREFIX] => bbs_life-
[HTTP_ACCEPT] => text/html, application/xhtml+xml, */*
[HTTP_ACCEPT_LANGUAGE] => zh-CN
[HTTP_USER_AGENT] => Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
[HTTP_ACCEPT_ENCODING] => gzip, deflate
[HTTP_HOST] => bbs.life.sina.com.cn
[HTTP_CONNECTION] => Keep-Alive
[HTTP_COOKIE] => U_TRS1=00000050.7457502c.4f77f60d.255c07e6; SINAGLOBAL=0000001a.9ab31b73.4f781b96.4e426534; UOR=www.baidu.com,blog,; ULV=1335207830060:1:1:1:61.135.159.228.584951335203177750:; __utma=269849203.720048980.1335203177.1335203177.1335203177.1; __utmz=269849203.1335203177.1.1.utmccn=(direct)|utmcsr=(direct)|utmcmd=(none); vjuids=267adcc02.1367281e9fd.0.d2402881e09d1; vjlast=1335207831.1335207850.10; ALF=1335515189; SUR=uid%3D2242519471%26user%3D80320524%2540qq.com%26nick%3D%25E9%2594%2599%25E8%25AF%25AFera%26email%3D%26dob%3D%26ag%3D4%26sex%3D1%26ssl%3D0; SGUP=0; U_TRS2=000000e4.2e3c6406.4f96e286.e438997c; SUS=SID-2242519471-1335292430-XD-6li9h-9d9f55fa207e6e13fb2b155b13b0d751; SUE=es%3Dc334687a1a107d7ba637fe9552e9cbd4%26ev%3Dv1%26es2%3Df5d98e2e03233701d821bdf003601451%26rs0%3D2WycZqG1u3oZKrH%252Bc59TBvw9%252BUumDly8Opz0AXkNI9pRVZ9kHRjNUVinW4uVY%252BfCDxS0xJV1FlqMlTKuYnfdmbnxP6dQIg0RoiPy3LlZymjY9NHjB84qx7aYHsYJDDl7SyDroNLIZz33KooZkEkiqlwZR5QLxN7NSkchsR2Yo94%253D%26rv%3D0; SUP=cv%3D1%26bt%3D1335292430%26et%3D1335378830%26d%3D40c3%26i%3Dd751%26us%3D1%26vf%3D0%26vt%3D0%26ac%3D4%26lt%3D7%26uid%3D2242519471%26user%3D80320524%2540qq.com%26ag%3D4%26name%3D80320524%2540qq.com%26nick%3D%25E9%2594%2599%25E8%25AF%25AFera%26sex%3D1%26ps%3D0%26email%3D%26dob%3D%26ln%3D%26os%3D%26fmp%3D%26lcp%3D2012-02-12%252016%253A31%253A47; Apache=3d328351.6651ce0.4f96f4ff.76e457e8; LIFE_USER_CITY_ID=2
[PATH] => /usr/local/sinasrv2/sbin:/usr/local/sinasrv2/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
[SERVER_SIGNATURE] =>
[SERVER_SOFTWARE] => Apache
[SERVER_NAME] => bbs.life.sina.com.cn
[SERVER_ADDR] => 10.54.22.47
[SERVER_PORT] => 80
[REMOTE_ADDR] => 211.136.7.250
[DOCUMENT_ROOT] => /data1/www/htdocs/bbs.life.sina.com.cn/
[SERVER_ADMIN] => zhuhe@staff.sina.com.cn
[SCRIPT_FILENAME] => /data1/www/htdocs/bbs.life.sina.com.cn/info.php
[REMOTE_PORT] => 34864
[GATEWAY_INTERFACE] => CGI/1.1
[SERVER_PROTOCOL] => HTTP/1.1
[REQUEST_METHOD] => GET
[QUERY_STRING] =>
[REQUEST_URI] => /info.php
[SCRIPT_NAME] => /info.php
[PHP_SELF] => /info.php
[REQUEST_TIME] => 1335293683
)
修复方案:
你懂我的明白
版权声明:转载请注明来源 Errorera@乌云
漏洞回应
厂商回应:
危害等级:中
漏洞Rank:10
确认时间:2012-04-25 09:57
厂商回复:
感谢提供
最新状态:
暂无