当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2013-029260

漏洞标题:腾讯某分站远程命令执行漏洞

相关厂商:腾讯

漏洞作者: 猪猪侠

提交时间:2013-07-17 15:22

修复时间:2013-07-18 16:02

公开时间:2013-07-18 16:02

漏洞类型:命令执行

危害等级:中

自评Rank:10

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2013-07-17: 细节已通知厂商并且等待厂商处理中
2013-07-18: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

google 搜索 site:qq.com filetype:action,直接远程执行命令回显。
腾讯比较大,最后发一个!

详细说明:

http://data.euro2012.qq.com/eurocupTencent/eurocup/euroLive.action

eth0      Link encap:Ethernet  HWaddr 00:16:3E:4A:EE:D4  
          UP BROADCAST RUNNING MULTICAST  MTU:1480  Metric:1
          RX packets:9 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:722 (722.0 b)  TX bytes:0 (0.0 b)
eth1      Link encap:Ethernet  HWaddr 00:16:3E:50:24:EF  
          inet addr:10.190.135.61  Bcast:10.190.135.255  Mask:255.255.248.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:468459850 errors:0 dropped:0 overruns:0 frame:0
          TX packets:213135358 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:40490088152 (38614.3 Mb)  TX bytes:201092746304 (191776.9 Mb)
lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:4297579 errors:0 dropped:0 overruns:0 frame:0
          TX packets:4297579 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:473352243 (451.4 Mb)  TX bytes:473352243 (451.4 Mb)
tunl0     Link encap:IPIP Tunnel  HWaddr   
          UP RUNNING NOARP  MTU:1480  Metric:1
          RX packets:92926225 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:11339558724 (10814.2 Mb)  TX bytes:0 (0.0 b)
tunl0:0   Link encap:IPIP Tunnel  HWaddr   
          inet addr:183.60.84.160  Mask:255.255.255.255
          UP RUNNING NOARP  MTU:1480  Metric:1
tunl0:1   Link encap:IPIP Tunnel  HWaddr   
          inet addr:112.90.8.108  Mask:255.255.255.255
          UP RUNNING NOARP  MTU:1480  Metric:1
tunl0:2   Link encap:IPIP Tunnel  HWaddr   
          inet addr:183.232.17.18  Mask:255.255.255.255
          UP RUNNING NOARP  MTU:1480  Metric:1
tunl1     Link encap:IPIP Tunnel  HWaddr   
          inet addr:127.0.1.1  P-t-P:127.0.1.1  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP  MTU:1480  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:101487668 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 b)  TX bytes:124035761559 (118289.7 Mb)
tunl2     Link encap:IPIP Tunnel  HWaddr   
          inet addr:127.0.1.2  P-t-P:127.0.1.2  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP  MTU:1480  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:41437346 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 b)  TX bytes:52469934697 (50039.2 Mb)
tunl3     Link encap:IPIP Tunnel  HWaddr   
          inet addr:127.0.1.3  P-t-P:127.0.1.3  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP  MTU:1480  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1689726 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 b)  TX bytes:2072081569 (1976.0 Mb)
tunnat    Link encap:IPIP Tunnel  HWaddr   
          inet addr:127.0.0.53  P-t-P:127.0.0.53  Mask:255.255.255.255
          UP POINTOPOINT RUNNING NOARP  MTU:1480  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:4 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
          RX bytes:0 (0.0 b)  TX bytes:288 (288.0 b)

漏洞证明:

tencent.jpg

修复方案:

升级第三方框架。

版权声明:转载请注明来源 猪猪侠@乌云

漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2013-07-18 16:02

厂商回复:

我们在17号上午就已经接到大量报告,获悉到这个情况,因此这里忽略。
依然感谢你的报告。

漏洞Rank:5 (WooYun评价)

最新状态:

暂无

漏洞评价:

评论

  1. 2013-07-17 15:28 | 鬼魅羊羔 ( 普通白帽子 | Rank:299 漏洞数:41 | (#‵′)凸(#‵′)凸(#‵′)凸(#‵′)凸(#‵...)

    关键字都扔出来了。。。

  2. 2013-07-17 23:54 | Deep ( 路人 | Rank:1 漏洞数:1 | 一个小白.想要变小黑.)

    无奈。

  3. 2013-07-18 18:08 | Black Angel ( 普通白帽子 | Rank:163 漏洞数:35 | 最神奇的一群人,智慧低调又内敛,俗称马甲...)

    傻逼玩意,高高在上的