当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2014-058261

漏洞标题:北京安宁创新网络科技有限公司DNS区域传送漏洞

相关厂商:北京安宁创新网络科技有限公司

漏洞作者: Mody

提交时间:2014-04-24 12:11

修复时间:2014-04-29 12:12

公开时间:2014-04-29 12:12

漏洞类型:重要敏感信息泄露

危害等级:中

自评Rank:10

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2014-04-24: 细节已通知厂商并且等待厂商处理中
2014-04-29: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

标题是不是侧漏了。。。

详细说明:

root@kali:~# dnsenum anymacro.com
dnsenum.pl VERSION:1.2.2
-----   anymacro.com   -----
Host's addresses:
__________________
anymacro.com                             86400    IN    A        221.192.133.59
Name Servers:
______________
ns3.sp6.com                              7812     IN    A        61.55.135.158
ns7.sp6.com                              7812     IN    A        116.213.201.189
Mail (MX) Servers:
___________________
mail.anymacro.com                        85591    IN    A        221.192.133.57
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for anymacro.com on ns3.sp6.com ... 
anymacro.com                             86400    IN    SOA                
anymacro.com                             86400    IN    NS                 
anymacro.com                             86400    IN    NS                 
anymacro.com                             86400    IN    MX                 
anymacro.com                             86400    IN    TXT                
anymacro.com                             86400    IN    A        221.192.133.59
#push.anymacro.com                       86400    IN    A        61.50.165.206
#push.anymacro.com                       86400    IN    A        114.251.109.165
4ios.anymacro.com                        86400    IN    CNAME              
_autodiscover._tcp.anymacro.com          86400    IN    CNAME              
anygrey.anymacro.com                     86400    IN    A        221.192.133.56
autodiscover.anymacro.com                86400    IN    CNAME              
bjtu.anymacro.com                        86400    IN    A        221.192.133.56
bjtu.anymacro.com                        86400    IN    MX                 
bqq.anymacro.com                         86400    IN    A        61.55.135.160
bug.anymacro.com                         86400    IN    A        192.168.2.14
check.anymacro.com                       86400    IN    A        61.55.135.158
check.anymacro.com                       86400    IN    MX                 
check1.anymacro.com                      86400    IN    A        221.192.133.56
checkblack.anymacro.com                  86400    IN    A        61.55.135.158
cic-c.anymacro.com                       86400    IN    A        221.192.133.56
cic-c.anymacro.com                       86400    IN    MX                 
cmbc.anymacro.com                        86400    IN    A        221.192.133.56
cmbc.anymacro.com                        86400    IN    MX                 
cur.anymacro.com                         86400    IN    A        61.55.135.158
dav.anymacro.com                         86400    IN    CNAME              
deliverdemo.anymacro.com                 86400    IN    A        221.192.133.56
demo.anymacro.com                        86400    IN    A        221.192.133.57
demo.anymacro.com                        86400    IN    MX                 
dev.anymacro.com                         86400    IN    A        61.55.135.158
dev.anymacro.com                         86400    IN    MX                 
doc.anymacro.com                         86400    IN    A        61.55.135.158
download.anymacro.com                    86400    IN    A        61.55.135.160
eidbupt.anymacro.com                     86400    IN    A        211.68.71.7
exchange.anymacro.com                    86400    IN    A        61.55.135.158
exchange2003.anymacro.com                86400    IN    A        221.192.133.56
exchange2003.anymacro.com                86400    IN    MX                 
exchange2007.anymacro.com                86400    IN    A        221.192.133.56
exchange2007.anymacro.com                86400    IN    MX                 
fax.anymacro.com                         86400    IN    A        61.55.135.158
faxtest.anymacro.com                     86400    IN    A        119.248.84.239
ftp.anymacro.com                         86400    IN    A        61.55.135.160
g6s.anymacro.com                         86400    IN    A        119.248.84.239
g6s.anymacro.com                         86400    IN    MX                 
g6x.anymacro.com                         86400    IN    MX                 
g6x.anymacro.com                         86400    IN    A        119.248.84.239
g7.anymacro.com                          86400    IN    A        119.248.84.239
g7.anymacro.com                          86400    IN    MX                 
g7demo.anymacro.com                      86400    IN    A        221.192.133.56
g7demo.anymacro.com                      86400    IN    MX                 
g7demo1.anymacro.com                     86400    IN    A        221.192.133.56
g7demo1.anymacro.com                     86400    IN    MX                 
g7dev.anymacro.com                       86400    IN    CNAME              
g7gxb.anymacro.com                       86400    IN    A        221.192.133.56
g7proxy.anymacro.com                     86400    IN    A        61.55.135.158
greylist.anymacro.com                    86400    IN    A        61.55.135.158
greylist1.anymacro.com                   86400    IN    A        61.55.135.158
greylistadm.anymacro.com                 86400    IN    A        192.168.10.1
gw.anymacro.com                          86400    IN    A        61.55.136.30
gxb.anymacro.com                         86400    IN    A        202.106.120.110
gxb.anymacro.com                         86400    IN    MX                 
h6s.anymacro.com                         86400    IN    A        61.55.135.19
help.anymacro.com                        86400    IN    A        61.55.135.158
hisafe.anymacro.com                      86400    IN    A        119.248.84.239
imap.anymacro.com                        86400    IN    CNAME              
jungong.anymacro.com                     86400    IN    A        119.248.84.239
lic.anymacro.com                         86400    IN    A        61.55.135.158
license.anymacro.com                     86400    IN    A        61.55.135.158
localhost.anymacro.com                   86400    IN    A         127.0.0.1
mail.anymacro.com                        86400    IN    A        221.192.133.57
mail2.anymacro.com                       86400    IN    CNAME              
maillist.anymacro.com                    86400    IN    A        61.55.135.158
maillistdemo.anymacro.com                86400    IN    A        221.192.133.56
mangwiki.anymacro.com                    86400    IN    A        192.168.10.1
map.anymacro.com                         86400    IN    A        61.55.135.158
mdgtest.anymacro.com                     86400    IN    A        119.248.84.239
mpgtest.anymacro.com                     86400    IN    A        119.248.84.239
ngn.anymacro.com                         86400    IN    A        119.248.84.239
ns3.anymacro.com                         86400    IN    A        61.55.135.158
nsms.anymacro.com                        86400    IN    A        61.55.135.158
pop3.anymacro.com                        86400    IN    CNAME              
project.anymacro.com                     86400    IN    A        192.168.2.7
push.anymacro.com                        86400    IN    A        61.55.135.160
pushmail.anymacro.com                    86400    IN    A        61.55.135.158
pushtest.anymacro.com                    86400    IN    A        211.154.203.85
sec.anymacro.com                         86400    IN    A        61.55.135.158
secdemo.anymacro.com                     86400    IN    A        221.192.133.56
secverifydemo.anymacro.com               86400    IN    A        221.192.133.56
sellxxx.anymacro.com                     86400    IN    A        61.55.135.158
sms.anymacro.com                         86400    IN    A        61.55.135.158
smtp.anymacro.com                        86400    IN    CNAME              
solewiki.anymacro.com                    86400    IN    A        192.168.10.1
sso.anymacro.com                         86400    IN    A        192.168.10.1
std.anymacro.com                         86400    IN    A        61.55.135.158
test.anymacro.com                        86400    IN    A        221.192.133.57
test.anymacro.com                        86400    IN    MX                 
testspf.anymacro.com                     86400    IN    A        61.55.136.28
testspf.anymacro.com                     86400    IN    MX                 
testwww.anymacro.com                     86400    IN    A        61.55.135.158
testwww2.anymacro.com                    86400    IN    A        61.55.135.158
virus.anymacro.com                       86400    IN    A        61.55.135.158
wap.anymacro.com                         86400    IN    A        61.55.135.158
webg.anymacro.com                        86400    IN    A        61.55.135.158
wiki.anymacro.com                        86400    IN    A        192.168.10.1
www.anymacro.com                         86400    IN    A        221.192.133.59
zzedu.anymacro.com                       86400    IN    A        218.28.2.107
ns3.sp6.com Bind Version: 9.2.4
Trying Zone Transfer for anymacro.com on ns7.sp6.com ... 
anymacro.com                             86400    IN    SOA                
anymacro.com                             86400    IN    NS                 
anymacro.com                             86400    IN    NS                 
anymacro.com                             86400    IN    MX                 
anymacro.com                             86400    IN    TXT                
anymacro.com                             86400    IN    A        221.192.133.59
#push.anymacro.com                       86400    IN    A        61.50.165.206
#push.anymacro.com                       86400    IN    A        114.251.109.165
4ios.anymacro.com                        86400    IN    CNAME              
_autodiscover._tcp.anymacro.com          86400    IN    CNAME              
anygrey.anymacro.com                     86400    IN    A        221.192.133.56
autodiscover.anymacro.com                86400    IN    CNAME              
bjtu.anymacro.com                        86400    IN    A        221.192.133.56
bjtu.anymacro.com                        86400    IN    MX                 
bqq.anymacro.com                         86400    IN    A        61.55.135.160
bug.anymacro.com                         86400    IN    A        192.168.2.14
check.anymacro.com                       86400    IN    A        61.55.135.158
check.anymacro.com                       86400    IN    MX                 
check1.anymacro.com                      86400    IN    A        221.192.133.56
checkblack.anymacro.com                  86400    IN    A        61.55.135.158
cic-c.anymacro.com                       86400    IN    A        221.192.133.56
cic-c.anymacro.com                       86400    IN    MX                 
cmbc.anymacro.com                        86400    IN    A        221.192.133.56
cmbc.anymacro.com                        86400    IN    MX                 
cur.anymacro.com                         86400    IN    A        61.55.135.158
dav.anymacro.com                         86400    IN    CNAME              
deliverdemo.anymacro.com                 86400    IN    A        221.192.133.56
demo.anymacro.com                        86400    IN    A        221.192.133.57
demo.anymacro.com                        86400    IN    MX                 
dev.anymacro.com                         86400    IN    A        61.55.135.158
dev.anymacro.com                         86400    IN    MX                 
doc.anymacro.com                         86400    IN    A        61.55.135.158
download.anymacro.com                    86400    IN    A        61.55.135.160
eidbupt.anymacro.com                     86400    IN    A        211.68.71.7
exchange.anymacro.com                    86400    IN    A        61.55.135.158
exchange2003.anymacro.com                86400    IN    A        221.192.133.56
exchange2003.anymacro.com                86400    IN    MX                 
exchange2007.anymacro.com                86400    IN    A        221.192.133.56
exchange2007.anymacro.com                86400    IN    MX                 
fax.anymacro.com                         86400    IN    A        61.55.135.158
faxtest.anymacro.com                     86400    IN    A        119.248.84.239
ftp.anymacro.com                         86400    IN    A        61.55.135.160
g6s.anymacro.com                         86400    IN    A        119.248.84.239
g6s.anymacro.com                         86400    IN    MX                 
g6x.anymacro.com                         86400    IN    MX                 
g6x.anymacro.com                         86400    IN    A        119.248.84.239
g7.anymacro.com                          86400    IN    A        119.248.84.239
g7.anymacro.com                          86400    IN    MX                 
g7demo.anymacro.com                      86400    IN    A        221.192.133.56
g7demo.anymacro.com                      86400    IN    MX                 
g7dev.anymacro.com                       86400    IN    CNAME              
g7gxb.anymacro.com                       86400    IN    A        221.192.133.56
g7proxy.anymacro.com                     86400    IN    A        61.55.135.158
greylist.anymacro.com                    86400    IN    A        61.55.135.158
greylist1.anymacro.com                   86400    IN    A        61.55.135.158
greylistadm.anymacro.com                 86400    IN    A        192.168.10.1
gw.anymacro.com                          86400    IN    A        61.55.136.30
gxb.anymacro.com                         86400    IN    A        202.106.120.110
gxb.anymacro.com                         86400    IN    MX                 
h6s.anymacro.com                         86400    IN    A        61.55.135.19
help.anymacro.com                        86400    IN    A        61.55.135.158
hisafe.anymacro.com                      86400    IN    A        119.248.84.239
imap.anymacro.com                        86400    IN    CNAME              
jungong.anymacro.com                     86400    IN    A        119.248.84.239
lic.anymacro.com                         86400    IN    A        61.55.135.158
license.anymacro.com                     86400    IN    A        61.55.135.158
localhost.anymacro.com                   86400    IN    A         127.0.0.1
mail.anymacro.com                        86400    IN    A        221.192.133.57
mail2.anymacro.com                       86400    IN    CNAME              
maillist.anymacro.com                    86400    IN    A        61.55.135.158
maillistdemo.anymacro.com                86400    IN    A        221.192.133.56
mangwiki.anymacro.com                    86400    IN    A        192.168.10.1
map.anymacro.com                         86400    IN    A        61.55.135.158
mdgtest.anymacro.com                     86400    IN    A        119.248.84.239
mpgtest.anymacro.com                     86400    IN    A        119.248.84.239
ngn.anymacro.com                         86400    IN    A        119.248.84.239
ns3.anymacro.com                         86400    IN    A        61.55.135.158
nsms.anymacro.com                        86400    IN    A        61.55.135.158
pop3.anymacro.com                        86400    IN    CNAME              
project.anymacro.com                     86400    IN    A        192.168.2.7
push.anymacro.com                        86400    IN    A        61.55.135.160
pushmail.anymacro.com                    86400    IN    A        61.55.135.158
pushtest.anymacro.com                    86400    IN    A        211.154.203.85
sec.anymacro.com                         86400    IN    A        61.55.135.158
secdemo.anymacro.com                     86400    IN    A        221.192.133.56
secverifydemo.anymacro.com               86400    IN    A        221.192.133.56
sellxxx.anymacro.com                     86400    IN    A        61.55.135.158
sms.anymacro.com                         86400    IN    A        61.55.135.158
smtp.anymacro.com                        86400    IN    CNAME              
solewiki.anymacro.com                    86400    IN    A        192.168.10.1
sso.anymacro.com                         86400    IN    A        192.168.10.1
std.anymacro.com                         86400    IN    A        61.55.135.158
test.anymacro.com                        86400    IN    A        221.192.133.57
test.anymacro.com                        86400    IN    MX                 
testspf.anymacro.com                     86400    IN    A        61.55.136.28
testspf.anymacro.com                     86400    IN    MX                 
testwww.anymacro.com                     86400    IN    A        61.55.135.158
testwww2.anymacro.com                    86400    IN    A        61.55.135.158
virus.anymacro.com                       86400    IN    A        61.55.135.158
wap.anymacro.com                         86400    IN    A        61.55.135.158
webg.anymacro.com                        86400    IN    A        61.55.135.158
wiki.anymacro.com                        86400    IN    A        192.168.10.1
www.anymacro.com                         86400    IN    A        221.192.133.59
zzedu.anymacro.com                       86400    IN    A        218.28.2.107
ns7.sp6.com Bind Version: 9.2.4
 Wildcards detected, all subdomains will point to the same IP address, bye.

漏洞证明:

如上

修复方案:

你比我更懂的

版权声明:转载请注明来源 Mody@乌云

漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2014-04-29 12:12

厂商回复:

最新状态:

2014-04-30:感谢您的反馈,因为其他的原因造成没有及时处理。现在已经处理完成

漏洞评价:

评论

  1. 2014-04-24 12:24 | Mody ( 普通白帽子 | Rank:110 漏洞数:24 | "><img src=x onerror=alert(1);> <img s...)

    呜呜,这是小厂商了么?@疯狗

  2. 2014-04-24 14:09 | 疯狗 认证白帽子 ( 实习白帽子 | Rank:44 漏洞数:2 | 阅尽天下漏洞,心中自然无码。)

    @Mody 是的

  3. 2014-04-29 21:04 | Mody ( 普通白帽子 | Rank:110 漏洞数:24 | "><img src=x onerror=alert(1);> <img s...)

    你就忽略吧@北京安宁创新网络科技有限公司