当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2014-058261

漏洞标题:北京安宁创新网络科技有限公司DNS区域传送漏洞

相关厂商:北京安宁创新网络科技有限公司

漏洞作者: Mody

提交时间:2014-04-24 12:11

修复时间:2014-04-29 12:12

公开时间:2014-04-29 12:12

漏洞类型:重要敏感信息泄露

危害等级:中

自评Rank:10

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2014-04-24: 细节已通知厂商并且等待厂商处理中
2014-04-29: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

标题是不是侧漏了。。。

详细说明:

root@kali:~# dnsenum anymacro.com
dnsenum.pl VERSION:1.2.2
----- anymacro.com -----
Host's addresses:
__________________
anymacro.com 86400 IN A 221.192.133.59
Name Servers:
______________
ns3.sp6.com 7812 IN A 61.55.135.158
ns7.sp6.com 7812 IN A 116.213.201.189
Mail (MX) Servers:
___________________
mail.anymacro.com 85591 IN A 221.192.133.57
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for anymacro.com on ns3.sp6.com ...
anymacro.com 86400 IN SOA
anymacro.com 86400 IN NS
anymacro.com 86400 IN NS
anymacro.com 86400 IN MX
anymacro.com 86400 IN TXT
anymacro.com 86400 IN A 221.192.133.59
#push.anymacro.com 86400 IN A 61.50.165.206
#push.anymacro.com 86400 IN A 114.251.109.165
4ios.anymacro.com 86400 IN CNAME
_autodiscover._tcp.anymacro.com 86400 IN CNAME
anygrey.anymacro.com 86400 IN A 221.192.133.56
autodiscover.anymacro.com 86400 IN CNAME
bjtu.anymacro.com 86400 IN A 221.192.133.56
bjtu.anymacro.com 86400 IN MX
bqq.anymacro.com 86400 IN A 61.55.135.160
bug.anymacro.com 86400 IN A 192.168.2.14
check.anymacro.com 86400 IN A 61.55.135.158
check.anymacro.com 86400 IN MX
check1.anymacro.com 86400 IN A 221.192.133.56
checkblack.anymacro.com 86400 IN A 61.55.135.158
cic-c.anymacro.com 86400 IN A 221.192.133.56
cic-c.anymacro.com 86400 IN MX
cmbc.anymacro.com 86400 IN A 221.192.133.56
cmbc.anymacro.com 86400 IN MX
cur.anymacro.com 86400 IN A 61.55.135.158
dav.anymacro.com 86400 IN CNAME
deliverdemo.anymacro.com 86400 IN A 221.192.133.56
demo.anymacro.com 86400 IN A 221.192.133.57
demo.anymacro.com 86400 IN MX
dev.anymacro.com 86400 IN A 61.55.135.158
dev.anymacro.com 86400 IN MX
doc.anymacro.com 86400 IN A 61.55.135.158
download.anymacro.com 86400 IN A 61.55.135.160
eidbupt.anymacro.com 86400 IN A 211.68.71.7
exchange.anymacro.com 86400 IN A 61.55.135.158
exchange2003.anymacro.com 86400 IN A 221.192.133.56
exchange2003.anymacro.com 86400 IN MX
exchange2007.anymacro.com 86400 IN A 221.192.133.56
exchange2007.anymacro.com 86400 IN MX
fax.anymacro.com 86400 IN A 61.55.135.158
faxtest.anymacro.com 86400 IN A 119.248.84.239
ftp.anymacro.com 86400 IN A 61.55.135.160
g6s.anymacro.com 86400 IN A 119.248.84.239
g6s.anymacro.com 86400 IN MX
g6x.anymacro.com 86400 IN MX
g6x.anymacro.com 86400 IN A 119.248.84.239
g7.anymacro.com 86400 IN A 119.248.84.239
g7.anymacro.com 86400 IN MX
g7demo.anymacro.com 86400 IN A 221.192.133.56
g7demo.anymacro.com 86400 IN MX
g7demo1.anymacro.com 86400 IN A 221.192.133.56
g7demo1.anymacro.com 86400 IN MX
g7dev.anymacro.com 86400 IN CNAME
g7gxb.anymacro.com 86400 IN A 221.192.133.56
g7proxy.anymacro.com 86400 IN A 61.55.135.158
greylist.anymacro.com 86400 IN A 61.55.135.158
greylist1.anymacro.com 86400 IN A 61.55.135.158
greylistadm.anymacro.com 86400 IN A 192.168.10.1
gw.anymacro.com 86400 IN A 61.55.136.30
gxb.anymacro.com 86400 IN A 202.106.120.110
gxb.anymacro.com 86400 IN MX
h6s.anymacro.com 86400 IN A 61.55.135.19
help.anymacro.com 86400 IN A 61.55.135.158
hisafe.anymacro.com 86400 IN A 119.248.84.239
imap.anymacro.com 86400 IN CNAME
jungong.anymacro.com 86400 IN A 119.248.84.239
lic.anymacro.com 86400 IN A 61.55.135.158
license.anymacro.com 86400 IN A 61.55.135.158
localhost.anymacro.com 86400 IN A 127.0.0.1
mail.anymacro.com 86400 IN A 221.192.133.57
mail2.anymacro.com 86400 IN CNAME
maillist.anymacro.com 86400 IN A 61.55.135.158
maillistdemo.anymacro.com 86400 IN A 221.192.133.56
mangwiki.anymacro.com 86400 IN A 192.168.10.1
map.anymacro.com 86400 IN A 61.55.135.158
mdgtest.anymacro.com 86400 IN A 119.248.84.239
mpgtest.anymacro.com 86400 IN A 119.248.84.239
ngn.anymacro.com 86400 IN A 119.248.84.239
ns3.anymacro.com 86400 IN A 61.55.135.158
nsms.anymacro.com 86400 IN A 61.55.135.158
pop3.anymacro.com 86400 IN CNAME
project.anymacro.com 86400 IN A 192.168.2.7
push.anymacro.com 86400 IN A 61.55.135.160
pushmail.anymacro.com 86400 IN A 61.55.135.158
pushtest.anymacro.com 86400 IN A 211.154.203.85
sec.anymacro.com 86400 IN A 61.55.135.158
secdemo.anymacro.com 86400 IN A 221.192.133.56
secverifydemo.anymacro.com 86400 IN A 221.192.133.56
sellxxx.anymacro.com 86400 IN A 61.55.135.158
sms.anymacro.com 86400 IN A 61.55.135.158
smtp.anymacro.com 86400 IN CNAME
solewiki.anymacro.com 86400 IN A 192.168.10.1
sso.anymacro.com 86400 IN A 192.168.10.1
std.anymacro.com 86400 IN A 61.55.135.158
test.anymacro.com 86400 IN A 221.192.133.57
test.anymacro.com 86400 IN MX
testspf.anymacro.com 86400 IN A 61.55.136.28
testspf.anymacro.com 86400 IN MX
testwww.anymacro.com 86400 IN A 61.55.135.158
testwww2.anymacro.com 86400 IN A 61.55.135.158
virus.anymacro.com 86400 IN A 61.55.135.158
wap.anymacro.com 86400 IN A 61.55.135.158
webg.anymacro.com 86400 IN A 61.55.135.158
wiki.anymacro.com 86400 IN A 192.168.10.1
www.anymacro.com 86400 IN A 221.192.133.59
zzedu.anymacro.com 86400 IN A 218.28.2.107
ns3.sp6.com Bind Version: 9.2.4
Trying Zone Transfer for anymacro.com on ns7.sp6.com ...
anymacro.com 86400 IN SOA
anymacro.com 86400 IN NS
anymacro.com 86400 IN NS
anymacro.com 86400 IN MX
anymacro.com 86400 IN TXT
anymacro.com 86400 IN A 221.192.133.59
#push.anymacro.com 86400 IN A 61.50.165.206
#push.anymacro.com 86400 IN A 114.251.109.165
4ios.anymacro.com 86400 IN CNAME
_autodiscover._tcp.anymacro.com 86400 IN CNAME
anygrey.anymacro.com 86400 IN A 221.192.133.56
autodiscover.anymacro.com 86400 IN CNAME
bjtu.anymacro.com 86400 IN A 221.192.133.56
bjtu.anymacro.com 86400 IN MX
bqq.anymacro.com 86400 IN A 61.55.135.160
bug.anymacro.com 86400 IN A 192.168.2.14
check.anymacro.com 86400 IN A 61.55.135.158
check.anymacro.com 86400 IN MX
check1.anymacro.com 86400 IN A 221.192.133.56
checkblack.anymacro.com 86400 IN A 61.55.135.158
cic-c.anymacro.com 86400 IN A 221.192.133.56
cic-c.anymacro.com 86400 IN MX
cmbc.anymacro.com 86400 IN A 221.192.133.56
cmbc.anymacro.com 86400 IN MX
cur.anymacro.com 86400 IN A 61.55.135.158
dav.anymacro.com 86400 IN CNAME
deliverdemo.anymacro.com 86400 IN A 221.192.133.56
demo.anymacro.com 86400 IN A 221.192.133.57
demo.anymacro.com 86400 IN MX
dev.anymacro.com 86400 IN A 61.55.135.158
dev.anymacro.com 86400 IN MX
doc.anymacro.com 86400 IN A 61.55.135.158
download.anymacro.com 86400 IN A 61.55.135.160
eidbupt.anymacro.com 86400 IN A 211.68.71.7
exchange.anymacro.com 86400 IN A 61.55.135.158
exchange2003.anymacro.com 86400 IN A 221.192.133.56
exchange2003.anymacro.com 86400 IN MX
exchange2007.anymacro.com 86400 IN A 221.192.133.56
exchange2007.anymacro.com 86400 IN MX
fax.anymacro.com 86400 IN A 61.55.135.158
faxtest.anymacro.com 86400 IN A 119.248.84.239
ftp.anymacro.com 86400 IN A 61.55.135.160
g6s.anymacro.com 86400 IN A 119.248.84.239
g6s.anymacro.com 86400 IN MX
g6x.anymacro.com 86400 IN MX
g6x.anymacro.com 86400 IN A 119.248.84.239
g7.anymacro.com 86400 IN A 119.248.84.239
g7.anymacro.com 86400 IN MX
g7demo.anymacro.com 86400 IN A 221.192.133.56
g7demo.anymacro.com 86400 IN MX
g7dev.anymacro.com 86400 IN CNAME
g7gxb.anymacro.com 86400 IN A 221.192.133.56
g7proxy.anymacro.com 86400 IN A 61.55.135.158
greylist.anymacro.com 86400 IN A 61.55.135.158
greylist1.anymacro.com 86400 IN A 61.55.135.158
greylistadm.anymacro.com 86400 IN A 192.168.10.1
gw.anymacro.com 86400 IN A 61.55.136.30
gxb.anymacro.com 86400 IN A 202.106.120.110
gxb.anymacro.com 86400 IN MX
h6s.anymacro.com 86400 IN A 61.55.135.19
help.anymacro.com 86400 IN A 61.55.135.158
hisafe.anymacro.com 86400 IN A 119.248.84.239
imap.anymacro.com 86400 IN CNAME
jungong.anymacro.com 86400 IN A 119.248.84.239
lic.anymacro.com 86400 IN A 61.55.135.158
license.anymacro.com 86400 IN A 61.55.135.158
localhost.anymacro.com 86400 IN A 127.0.0.1
mail.anymacro.com 86400 IN A 221.192.133.57
mail2.anymacro.com 86400 IN CNAME
maillist.anymacro.com 86400 IN A 61.55.135.158
maillistdemo.anymacro.com 86400 IN A 221.192.133.56
mangwiki.anymacro.com 86400 IN A 192.168.10.1
map.anymacro.com 86400 IN A 61.55.135.158
mdgtest.anymacro.com 86400 IN A 119.248.84.239
mpgtest.anymacro.com 86400 IN A 119.248.84.239
ngn.anymacro.com 86400 IN A 119.248.84.239
ns3.anymacro.com 86400 IN A 61.55.135.158
nsms.anymacro.com 86400 IN A 61.55.135.158
pop3.anymacro.com 86400 IN CNAME
project.anymacro.com 86400 IN A 192.168.2.7
push.anymacro.com 86400 IN A 61.55.135.160
pushmail.anymacro.com 86400 IN A 61.55.135.158
pushtest.anymacro.com 86400 IN A 211.154.203.85
sec.anymacro.com 86400 IN A 61.55.135.158
secdemo.anymacro.com 86400 IN A 221.192.133.56
secverifydemo.anymacro.com 86400 IN A 221.192.133.56
sellxxx.anymacro.com 86400 IN A 61.55.135.158
sms.anymacro.com 86400 IN A 61.55.135.158
smtp.anymacro.com 86400 IN CNAME
solewiki.anymacro.com 86400 IN A 192.168.10.1
sso.anymacro.com 86400 IN A 192.168.10.1
std.anymacro.com 86400 IN A 61.55.135.158
test.anymacro.com 86400 IN A 221.192.133.57
test.anymacro.com 86400 IN MX
testspf.anymacro.com 86400 IN A 61.55.136.28
testspf.anymacro.com 86400 IN MX
testwww.anymacro.com 86400 IN A 61.55.135.158
testwww2.anymacro.com 86400 IN A 61.55.135.158
virus.anymacro.com 86400 IN A 61.55.135.158
wap.anymacro.com 86400 IN A 61.55.135.158
webg.anymacro.com 86400 IN A 61.55.135.158
wiki.anymacro.com 86400 IN A 192.168.10.1
www.anymacro.com 86400 IN A 221.192.133.59
zzedu.anymacro.com 86400 IN A 218.28.2.107
ns7.sp6.com Bind Version: 9.2.4
Wildcards detected, all subdomains will point to the same IP address, bye.

漏洞证明:

如上

修复方案:

你比我更懂的

版权声明:转载请注明来源 Mody@乌云


漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2014-04-29 12:12

厂商回复:

最新状态:

2014-04-30:感谢您的反馈,因为其他的原因造成没有及时处理。现在已经处理完成


漏洞评价:

评论

  1. 2014-04-24 12:24 | Mody ( 普通白帽子 | Rank:110 漏洞数:24 | "><img src=x onerror=alert(1);> <img s...)

    呜呜,这是小厂商了么?@疯狗

  2. 2014-04-24 14:09 | 疯狗 认证白帽子 ( 实习白帽子 | Rank:44 漏洞数:2 | 阅尽天下漏洞,心中自然无码。)

    @Mody 是的

  3. 2014-04-29 21:04 | Mody ( 普通白帽子 | Rank:110 漏洞数:24 | "><img src=x onerror=alert(1);> <img s...)

    你就忽略吧@北京安宁创新网络科技有限公司