天津出入境检验检疫局某平台存在struts2命令执行漏洞

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0120582

漏洞标题：天津出入境检验检疫局某平台存在struts2命令执行漏洞

漏洞作者：朱元璋

提交时间：2015-06-15 17:15

修复时间：2015-08-03 17:04

公开时间：2015-08-03 17:04

漏洞类型：命令执行

危害等级：高

自评Rank：17

漏洞状态：已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2015-06-15：细节已通知厂商并且等待厂商处理中
2015-06-19：厂商已经确认，细节仅向厂商公开
2015-06-29：细节向核心白帽子及相关领域专家公开
2015-07-09：细节向普通白帽子公开
2015-07-19：细节向实习白帽子公开
2015-08-03：细节向公众公开

简要描述：

详细说明：

地址http://xxfw.tjciq.gov.cn/portal/portalInit.action?method=findAll存在struts2命令执行漏洞

whoami

root

netstat -an

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State      
tcp        0      0 0.0.0.0:5801            0.0.0.0:*               LISTEN      
tcp        0      0 172.30.78.22:427        0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:427           0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:5901            0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:2544          0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:631             0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:8005          :::*                    LISTEN      
tcp        0      0 :::8009                 :::*                    LISTEN      
tcp        0      0 :::80                   :::*                    LISTEN      
tcp        0      0 :::22                   :::*                    LISTEN      
tcp        0      0 ::1:25                  :::*                    LISTEN      
tcp        0      0 172.30.78.22:2454       172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:1530       172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:7671       172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:5990       172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:9161       172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:22276      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:21098      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:26197      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:29734      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:36166      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:34303      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:40884      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:39112      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:42708      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:42557      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:45762      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:52409      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:52259      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:49464      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:56079      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:54530      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:53553      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:58487      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:59290      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:57574      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:57444      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:58267      172.30.78.234:1521      TIME_WAIT   
tcp        0      0 172.30.78.22:80         171.111.43.2:53746      TIME_WAIT   
tcp        0      0 172.30.78.22:80         171.111.43.2:53752      TIME_WAIT   
tcp        0      0 172.30.78.22:80         171.111.43.2:53753      TIME_WAIT   
tcp        0      0 172.30.78.22:80         171.111.43.2:53755      ESTABLISHED 
udp        0      0 255.255.255.255:427     0.0.0.0:*                           
udp        0      0 172.30.78.22:427        0.0.0.0:*                           
udp        0      0 224.0.1.22:427          0.0.0.0:*                           
udp        0      0 239.255.255.253:427     0.0.0.0:*                           
udp        0      0 0.0.0.0:111             0.0.0.0:*                           
udp        0      0 0.0.0.0:631             0.0.0.0:*                           
udp        0      0 :::177                  :::*                                
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags       Type       State         I-Node Path
unix  2      [ ACC ]     STREAM     LISTENING     11470  /tmp/.gdm_socket
unix  2      [ ACC ]     STREAM     LISTENING     11557  /tmp/.X11-unix/X0
unix  2      [ ACC ]     STREAM     LISTENING     605917 /tmp/scim-socket-frontend-root
unix  2      [ ACC ]     STREAM     LISTENING     605966 /tmp/scim-helper-manager-socket-root
unix  2      [ ACC ]     STREAM     LISTENING     605970 /tmp/scim-panel-socket:0-root
unix  2      [ ACC ]     STREAM     LISTENING     606029 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  2      [ ACC ]     STREAM     LISTENING     606012 @/tmp/dbus-p81K7GWRXJ
unix  2      [ ACC ]     STREAM     LISTENING     6759   /var/run/acpid.socket
unix  2      [ ACC ]     STREAM     LISTENING     6716   /var/run/.resmgr_socket
unix  2      [ ]         DGRAM                    6856   @/var/run/hal/hotplug_socket2
unix  2      [ ACC ]     STREAM     LISTENING     6854   @/tmp/hald-local/dbus-5HpHRNgGkS
unix  2      [ ACC ]     STREAM     LISTENING     606004 /tmp/gpg-GGkQYh/S.gpg-agent
unix  2      [ ACC ]     STREAM     LISTENING     606224 /tmp/orbit-root/linc-45ab-0-79c51f2cf0a
unix  2      [ ACC ]     STREAM     LISTENING     606228 /tmp/.ICE-unix/17835
unix  2      [ ACC ]     STREAM     LISTENING     606007 /tmp/ssh-dJqw17835/agent.17835
unix  2      [ ACC ]     STREAM     LISTENING     606250 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  2      [ ACC ]     STREAM     LISTENING     606306 /tmp/orbit-root/linc-45f3-0-5bb9489fafb55
unix  2      [ ACC ]     STREAM     LISTENING     11699  private/rewrite
unix  2      [ ACC ]     STREAM     LISTENING     606369 /tmp/orbit-root/linc-45fc-0-4bd59005141ac
unix  2      [ ACC ]     STREAM     LISTENING     606384 /tmp/orbit-root/linc-4605-0-5aa3bf0f2bb29
unix  2      [ ACC ]     STREAM     LISTENING     606237 /tmp/keyring-Xxzxl2/socket
unix  16     [ ]         DGRAM                    6736   /dev/log
unix  2      [ ACC ]     STREAM     LISTENING     606435 /tmp/orbit-root/linc-460f-0-6952001d66851
unix  2      [ ACC ]     STREAM     LISTENING     606458 /tmp/orbit-root/linc-4611-0-6952001d896d5
unix  2      [ ACC ]     STREAM     LISTENING     11703  private/bounce
unix  2      [ ACC ]     STREAM     LISTENING     11707  private/defer
unix  2      [ ACC ]     STREAM     LISTENING     11711  private/trace
unix  2      [ ACC ]     STREAM     LISTENING     606569 /tmp/orbit-root/linc-4635-0-6952001daef80
unix  2      [ ACC ]     STREAM     LISTENING     11715  private/verify
unix  2      [ ACC ]     STREAM     LISTENING     606570 /tmp/orbit-root/linc-4642-0-7a7618d2aefa9
unix  2      [ ACC ]     STREAM     LISTENING     11719  public/flush
unix  2      [ ACC ]     STREAM     LISTENING     606595 /tmp/orbit-root/linc-463b-0-6952001db235f
unix  2      [ ACC ]     STREAM     LISTENING     11723  private/proxymap
unix  2      [ ACC ]     STREAM     LISTENING     11727  private/smtp
unix  2      [ ACC ]     STREAM     LISTENING     11731  private/relay
unix  2      [ ACC ]     STREAM     LISTENING     11735  public/showq
unix  2      [ ACC ]     STREAM     LISTENING     11739  private/error
unix  2      [ ACC ]     STREAM     LISTENING     606626 /tmp/orbit-root/linc-463d-0-6952001dbcdfb
unix  2      [ ACC ]     STREAM     LISTENING     11743  private/discard
unix  2      [ ACC ]     STREAM     LISTENING     11747  private/local
unix  2      [ ACC ]     STREAM     LISTENING     10808  /var/run/nscd/socket
unix  2      [ ACC ]     STREAM     LISTENING     11751  private/virtual
unix  2      [ ACC ]     STREAM     LISTENING     11755  private/lmtp
unix  2      [ ACC ]     STREAM     LISTENING     11759  private/anvil
unix  2      [ ACC ]     STREAM     LISTENING     606628 /tmp/orbit-root/linc-4637-0-6952001dbce57
unix  2      [ ACC ]     STREAM     LISTENING     11763  private/scache
unix  2      [ ACC ]     STREAM     LISTENING     11767  private/maildrop
unix  2      [ ACC ]     STREAM     LISTENING     11771  private/cyrus
unix  2      [ ACC ]     STREAM     LISTENING     606667 /tmp/orbit-root/linc-463f-0-6952001dc6ed7
unix  2      [ ACC ]     STREAM     LISTENING     11775  private/uucp
unix  2      [ ACC ]     STREAM     LISTENING     606699 /tmp/orbit-root/linc-4639-0-6952001de34b8
unix  2      [ ACC ]     STREAM     LISTENING     11779  private/ifmail
unix  2      [ ACC ]     STREAM     LISTENING     11783  private/bsmtp
unix  2      [ ACC ]     STREAM     LISTENING     11787  private/procmail
unix  2      [ ACC ]     STREAM     LISTENING     607108 /tmp/orbit-root/linc-4675-0-68a563a4aeba9
unix  2      [ ]         DGRAM                    3088   @/org/kernel/udev/udevd
unix  2      [ ACC ]     STREAM     LISTENING     11942  /var/run/zmd/zmd-remoting.socket
unix  2      [ ACC ]     STREAM     LISTENING     11944  /var/run/zmd/zmd-web.socket
unix  2      [ ]         DGRAM                    6855   @/org/freedesktop/hal/udev_event
unix  2      [ ACC ]     STREAM     LISTENING     11140  /var/run/zmd/zmd-remoting.socket
unix  2      [ ACC ]     STREAM     LISTENING     6757   /var/run/dbus/system_bus_socket
unix  2      [ ACC ]     STREAM     LISTENING     11142  /var/run/zmd/zmd-web.socket
unix  2      [ ACC ]     STREAM     LISTENING     11692  public/cleanup
unix  2      [ ]         DGRAM                    1125784 
unix  2      [ ]         DGRAM                    1124932 
unix  3      [ ]         STREAM     CONNECTED     1124922 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     1124921 
unix  2      [ ]         DGRAM                    690663 
unix  3      [ ]         STREAM     CONNECTED     607146 
unix  3      [ ]         STREAM     CONNECTED     607145 
unix  3      [ ]         STREAM     CONNECTED     607126 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     607125 
unix  3      [ ]         STREAM     CONNECTED     607124 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     607123 
unix  3      [ ]         STREAM     CONNECTED     607122 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     607121 
unix  3      [ ]         STREAM     CONNECTED     607115 /tmp/orbit-root/linc-4675-0-68a563a4aeba9
unix  3      [ ]         STREAM     CONNECTED     607114 
unix  3      [ ]         STREAM     CONNECTED     607113 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     607112 
unix  3      [ ]         STREAM     CONNECTED     607111 /tmp/orbit-root/linc-4675-0-68a563a4aeba9
unix  3      [ ]         STREAM     CONNECTED     607110 
unix  3      [ ]         STREAM     CONNECTED     607107 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     607106 
unix  3      [ ]         STREAM     CONNECTED     607104 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     607103 
unix  3      [ ]         STREAM     CONNECTED     607099 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     607098 
unix  3      [ ]         STREAM     CONNECTED     607093 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     607092 
unix  3      [ ]         STREAM     CONNECTED     607091 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     607090 
unix  3      [ ]         STREAM     CONNECTED     607089 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     607088 
unix  2      [ ]         DGRAM                    607062 
unix  3      [ ]         STREAM     CONNECTED     607060 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     607059 
unix  3      [ ]         STREAM     CONNECTED     607055 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     607054 
unix  3      [ ]         STREAM     CONNECTED     607053 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     607052 
unix  3      [ ]         STREAM     CONNECTED     607045 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     607044 
unix  3      [ ]         STREAM     CONNECTED     607003 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     607002 
unix  3      [ ]         STREAM     CONNECTED     606973 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     606972 
unix  3      [ ]         STREAM     CONNECTED     606924 /tmp/orbit-root/linc-4637-0-6952001dbce57
unix  3      [ ]         STREAM     CONNECTED     606923 
unix  3      [ ]         STREAM     CONNECTED     606922 /tmp/orbit-root/linc-4642-0-7a7618d2aefa9
unix  3      [ ]         STREAM     CONNECTED     606921 
unix  3      [ ]         STREAM     CONNECTED     606914 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     606913 
unix  3      [ ]         STREAM     CONNECTED     606912 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     606911 
unix  3      [ ]         STREAM     CONNECTED     606907 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     606906 
unix  3      [ ]         STREAM     CONNECTED     606844 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     606843 
unix  3      [ ]         STREAM     CONNECTED     606824 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     606823 
unix  3      [ ]         STREAM     CONNECTED     606822 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     606821 
unix  3      [ ]         STREAM     CONNECTED     606816 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     606815 
unix  3      [ ]         STREAM     CONNECTED     606814 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     606813 
unix  3      [ ]         STREAM     CONNECTED     606793 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     606792 
unix  3      [ ]         STREAM     CONNECTED     606747 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     606746 
unix  3      [ ]         STREAM     CONNECTED     606745 /tmp/orbit-root/linc-460f-0-6952001d66851
unix  3      [ ]         STREAM     CONNECTED     606744 
unix  3      [ ]         STREAM     CONNECTED     606743 /tmp/orbit-root/linc-4637-0-6952001dbce57
unix  3      [ ]         STREAM     CONNECTED     606742 
unix  3      [ ]         STREAM     CONNECTED     606736 /tmp/orbit-root/linc-460f-0-6952001d66851
unix  3      [ ]         STREAM     CONNECTED     606735 
unix  3      [ ]         STREAM     CONNECTED     606732 /tmp/orbit-root/linc-4639-0-6952001de34b8
unix  3      [ ]         STREAM     CONNECTED     606731 
unix  3      [ ]         STREAM     CONNECTED     606719 /tmp/orbit-root/linc-4639-0-6952001de34b8
unix  3      [ ]         STREAM     CONNECTED     606718 
unix  3      [ ]         STREAM     CONNECTED     606717 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606716 
unix  3      [ ]         STREAM     CONNECTED     606702 /tmp/orbit-root/linc-4639-0-6952001de34b8
unix  3      [ ]         STREAM     CONNECTED     606701 
unix  3      [ ]         STREAM     CONNECTED     606698 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606697 
unix  3      [ ]         STREAM     CONNECTED     606693 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606692 
unix  3      [ ]         STREAM     CONNECTED     606688 /tmp/orbit-root/linc-460f-0-6952001d66851
unix  3      [ ]         STREAM     CONNECTED     606687 
unix  3      [ ]         STREAM     CONNECTED     606686 /tmp/orbit-root/linc-463d-0-6952001dbcdfb
unix  3      [ ]         STREAM     CONNECTED     606685 
unix  3      [ ]         STREAM     CONNECTED     606683 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606682 
unix  3      [ ]         STREAM     CONNECTED     606677 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     606676 
unix  3      [ ]         STREAM     CONNECTED     606675 /tmp/orbit-root/linc-463f-0-6952001dc6ed7
unix  3      [ ]         STREAM     CONNECTED     606674 
unix  3      [ ]         STREAM     CONNECTED     606673 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606672 
unix  3      [ ]         STREAM     CONNECTED     606670 /tmp/orbit-root/linc-463f-0-6952001dc6ed7
unix  3      [ ]         STREAM     CONNECTED     606669 
unix  3      [ ]         STREAM     CONNECTED     606666 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606665 
unix  3      [ ]         STREAM     CONNECTED     606663 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     606662 
unix  3      [ ]         STREAM     CONNECTED     606661 /tmp/orbit-root/linc-4611-0-6952001d896d5
unix  3      [ ]         STREAM     CONNECTED     606660 
unix  3      [ ]         STREAM     CONNECTED     606656 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606655 
unix  3      [ ]         STREAM     CONNECTED     606654 /tmp/orbit-root/linc-4642-0-7a7618d2aefa9
unix  3      [ ]         STREAM     CONNECTED     606653 
unix  3      [ ]         STREAM     CONNECTED     606650 /tmp/orbit-root/linc-4642-0-7a7618d2aefa9
unix  3      [ ]         STREAM     CONNECTED     606649 
unix  3      [ ]         STREAM     CONNECTED     606648 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606647 
unix  3      [ ]         STREAM     CONNECTED     606644 /tmp/orbit-root/linc-4637-0-6952001dbce57
unix  3      [ ]         STREAM     CONNECTED     606643 
unix  3      [ ]         STREAM     CONNECTED     606642 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606641 
unix  3      [ ]         STREAM     CONNECTED     606640 /tmp/orbit-root/linc-463d-0-6952001dbcdfb
unix  3      [ ]         STREAM     CONNECTED     606639 
unix  3      [ ]         STREAM     CONNECTED     606638 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606636 
unix  3      [ ]         STREAM     CONNECTED     606637 /tmp/orbit-root/linc-4637-0-6952001dbce57
unix  3      [ ]         STREAM     CONNECTED     606635 
unix  3      [ ]         STREAM     CONNECTED     606631 /tmp/orbit-root/linc-463d-0-6952001dbcdfb
unix  3      [ ]         STREAM     CONNECTED     606630 
unix  3      [ ]         STREAM     CONNECTED     606625 @/tmp/dbus-p81K7GWRXJ
unix  3      [ ]         STREAM     CONNECTED     606624 
unix  3      [ ]         STREAM     CONNECTED     606622 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606618 
unix  3      [ ]         STREAM     CONNECTED     606621 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606617 
unix  3      [ ]         STREAM     CONNECTED     606608 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     606607 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606606 
unix  3      [ ]         STREAM     CONNECTED     606605 
unix  3      [ ]         STREAM     CONNECTED     606602 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606601 
unix  3      [ ]         STREAM     CONNECTED     606598 /tmp/orbit-root/linc-463b-0-6952001db235f
unix  3      [ ]         STREAM     CONNECTED     606597 
unix  3      [ ]         STREAM     CONNECTED     606594 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606593 
unix  3      [ ]         STREAM     CONNECTED     606592 @/tmp/dbus-p81K7GWRXJ
unix  3      [ ]         STREAM     CONNECTED     606591 
unix  3      [ ]         STREAM     CONNECTED     606588 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     606587 
unix  2      [ ]         DGRAM                    606584 
unix  3      [ ]         STREAM     CONNECTED     606582 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606581 
unix  3      [ ]         STREAM     CONNECTED     606578 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     606577 
unix  3      [ ]         STREAM     CONNECTED     606575 /tmp/orbit-root/linc-4642-0-7a7618d2aefa9
unix  3      [ ]         STREAM     CONNECTED     606574 
unix  3      [ ]         STREAM     CONNECTED     606576 /tmp/orbit-root/linc-4635-0-6952001daef80
unix  3      [ ]         STREAM     CONNECTED     606573 
unix  3      [ ]         STREAM     CONNECTED     606568 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606567 
unix  3      [ ]         STREAM     CONNECTED     606566 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606565 
unix  3      [ ]         STREAM     CONNECTED     606551 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606550 
unix  3      [ ]         STREAM     CONNECTED     606542 /tmp/orbit-root/linc-4611-0-6952001d896d5
unix  3      [ ]         STREAM     CONNECTED     606541 
unix  3      [ ]         STREAM     CONNECTED     606540 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606539 
unix  3      [ ]         STREAM     CONNECTED     606461 /tmp/orbit-root/linc-4611-0-6952001d896d5
unix  3      [ ]         STREAM     CONNECTED     606460 
unix  3      [ ]         STREAM     CONNECTED     606457 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606456 
unix  3      [ ]         STREAM     CONNECTED     606454 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     606453 
unix  3      [ ]         STREAM     CONNECTED     606449 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606448 
unix  3      [ ]         STREAM     CONNECTED     606442 /tmp/orbit-root/linc-460f-0-6952001d66851
unix  3      [ ]         STREAM     CONNECTED     606441 
unix  3      [ ]         STREAM     CONNECTED     606440 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606439 
unix  3      [ ]         STREAM     CONNECTED     606438 /tmp/orbit-root/linc-460f-0-6952001d66851
unix  3      [ ]         STREAM     CONNECTED     606437 
unix  3      [ ]         STREAM     CONNECTED     606434 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606433 
unix  3      [ ]         STREAM     CONNECTED     606431 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     606430 
unix  3      [ ]         STREAM     CONNECTED     606426 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606425 
unix  3      [ ]         STREAM     CONNECTED     606409 /tmp/.ICE-unix/17835
unix  3      [ ]         STREAM     CONNECTED     606408 
unix  3      [ ]         STREAM     CONNECTED     606407 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606406 
unix  3      [ ]         STREAM     CONNECTED     606405 /tmp/orbit-root/linc-45f3-0-5bb9489fafb55
unix  3      [ ]         STREAM     CONNECTED     606400 
unix  3      [ ]         STREAM     CONNECTED     606397 @/tmp/dbus-p81K7GWRXJ
unix  3      [ ]         STREAM     CONNECTED     606396 
unix  3      [ ]         STREAM     CONNECTED     606395 /tmp/orbit-root/linc-45f3-0-5bb9489fafb55
unix  3      [ ]         STREAM     CONNECTED     606394 
unix  3      [ ]         STREAM     CONNECTED     606393 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606392 
unix  3      [ ]         STREAM     CONNECTED     606387 /tmp/orbit-root/linc-4605-0-5aa3bf0f2bb29
unix  3      [ ]         STREAM     CONNECTED     606386 
unix  3      [ ]         STREAM     CONNECTED     606383 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606382 
unix  3      [ ]         STREAM     CONNECTED     606378 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606377 
unix  3      [ ]         STREAM     CONNECTED     606372 /tmp/orbit-root/linc-45fc-0-4bd59005141ac
unix  3      [ ]         STREAM     CONNECTED     606371 
unix  3      [ ]         STREAM     CONNECTED     606368 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606367 
unix  3      [ ]         STREAM     CONNECTED     606309 /tmp/orbit-root/linc-45f3-0-5bb9489fafb55
unix  3      [ ]         STREAM     CONNECTED     606308 
unix  3      [ ]         STREAM     CONNECTED     606305 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606304 
unix  3      [ ]         STREAM     CONNECTED     606300 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606299 
unix  3      [ ]         STREAM     CONNECTED     606257 /tmp/orbit-root/linc-45ab-0-79c51f2cf0a
unix  3      [ ]         STREAM     CONNECTED     606256 
unix  3      [ ]         STREAM     CONNECTED     606255 /tmp/orbit-root/linc-45f1-0-33cae47e8cd6f
unix  3      [ ]         STREAM     CONNECTED     606254 
unix  3      [ ]         STREAM     CONNECTED     606227 /tmp/orbit-root/linc-45ab-0-79c51f2cf0a
unix  3      [ ]         STREAM     CONNECTED     606226 
unix  3      [ ]         STREAM     CONNECTED     606223 /tmp/orbit-root/linc-45ea-0-62eb75d4c94e1
unix  3      [ ]         STREAM     CONNECTED     606222 
unix  3      [ ]         STREAM     CONNECTED     606205 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606204 
unix  2      [ ]         DGRAM                    606025 
unix  3      [ ]         STREAM     CONNECTED     606016 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     606015 
unix  3      [ ]         STREAM     CONNECTED     606014 
unix  3      [ ]         STREAM     CONNECTED     606013 
unix  3      [ ]         STREAM     CONNECTED     605974 /tmp/scim-panel-socket:0-root
unix  3      [ ]         STREAM     CONNECTED     605973 
unix  3      [ ]         STREAM     CONNECTED     605969 /tmp/scim-helper-manager-socket-root
unix  3      [ ]         STREAM     CONNECTED     605968 
unix  3      [ ]         STREAM     CONNECTED     605961 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     605960 
unix  3      [ ]         STREAM     CONNECTED     605959 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     605958 
unix  3      [ ]         STREAM     CONNECTED     605928 /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     605927 
unix  3      [ ]         STREAM     CONNECTED     605926 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     605925 
unix  3      [ ]         STREAM     CONNECTED     605924 /tmp/scim-socket-frontend-root
unix  3      [ ]         STREAM     CONNECTED     605923 
unix  2      [ ]         DGRAM                    12654  
unix  2      [ ]         DGRAM                    12064  
unix  3      [ ]         STREAM     CONNECTED     12061  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     12060  
unix  2      [ ]         DGRAM                    11895  
unix  3      [ ]         STREAM     CONNECTED     11872  /var/run/acpid.socket
unix  3      [ ]         STREAM     CONNECTED     11870  
unix  2      [ ]         DGRAM                    11846  
unix  3      [ ]         STREAM     CONNECTED     11790  
unix  3      [ ]         STREAM     CONNECTED     11789  
unix  3      [ ]         STREAM     CONNECTED     11786  
unix  3      [ ]         STREAM     CONNECTED     11785  
unix  3      [ ]         STREAM     CONNECTED     11782  
unix  3      [ ]         STREAM     CONNECTED     11781  
unix  3      [ ]         STREAM     CONNECTED     11778  
unix  3      [ ]         STREAM     CONNECTED     11777  
unix  3      [ ]         STREAM     CONNECTED     11774  
unix  3      [ ]         STREAM     CONNECTED     11773  
unix  3      [ ]         STREAM     CONNECTED     11770  
unix  3      [ ]         STREAM     CONNECTED     11769  
unix  3      [ ]         STREAM     CONNECTED     11766  
unix  3      [ ]         STREAM     CONNECTED     11765  
unix  3      [ ]         STREAM     CONNECTED     11762  
unix  3      [ ]         STREAM     CONNECTED     11761  
unix  3      [ ]         STREAM     CONNECTED     11758  
unix  3      [ ]         STREAM     CONNECTED     11757  
unix  3      [ ]         STREAM     CONNECTED     11754  
unix  3      [ ]         STREAM     CONNECTED     11753  
unix  3      [ ]         STREAM     CONNECTED     11750  
unix  3      [ ]         STREAM     CONNECTED     11749  
unix  3      [ ]         STREAM     CONNECTED     11746  
unix  3      [ ]         STREAM     CONNECTED     11745  
unix  3      [ ]         STREAM     CONNECTED     11742  
unix  3      [ ]         STREAM     CONNECTED     11741  
unix  3      [ ]         STREAM     CONNECTED     11738  
unix  3      [ ]         STREAM     CONNECTED     11737  
unix  3      [ ]         STREAM     CONNECTED     11734  
unix  3      [ ]         STREAM     CONNECTED     11733  
unix  3      [ ]         STREAM     CONNECTED     11730  
unix  3      [ ]         STREAM     CONNECTED     11729  
unix  3      [ ]         STREAM     CONNECTED     11726  
unix  3      [ ]         STREAM     CONNECTED     11725  
unix  3      [ ]         STREAM     CONNECTED     11722  
unix  3      [ ]         STREAM     CONNECTED     11721  
unix  3      [ ]         STREAM     CONNECTED     11718  
unix  3      [ ]         STREAM     CONNECTED     11717  
unix  3      [ ]         STREAM     CONNECTED     11714  
unix  3      [ ]         STREAM     CONNECTED     11713  
unix  3      [ ]         STREAM     CONNECTED     11710  
unix  3      [ ]         STREAM     CONNECTED     11709  
unix  3      [ ]         STREAM     CONNECTED     11706  
unix  3      [ ]         STREAM     CONNECTED     11705  
unix  3      [ ]         STREAM     CONNECTED     11702  
unix  3      [ ]         STREAM     CONNECTED     11701  
unix  3      [ ]         STREAM     CONNECTED     11698  
unix  3      [ ]         STREAM     CONNECTED     11697  
unix  3      [ ]         STREAM     CONNECTED     11695  
unix  3      [ ]         STREAM     CONNECTED     11694  
unix  3      [ ]         STREAM     CONNECTED     11691  
unix  3      [ ]         STREAM     CONNECTED     11690  
unix  3      [ ]         STREAM     CONNECTED     11688  
unix  3      [ ]         STREAM     CONNECTED     11687  
unix  2      [ ]         DGRAM                    11663  
unix  5      [ ]         STREAM     CONNECTED     12093  /tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     11565  
unix  3      [ ]         STREAM     CONNECTED     11551  /var/run/acpid.socket
unix  3      [ ]         STREAM     CONNECTED     11550  
unix  3      [ ]         STREAM     CONNECTED     11549  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     11548  
unix  3      [ ]         STREAM     CONNECTED     11545  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     11544  
unix  2      [ ]         DGRAM                    11367  
unix  2      [ ]         DGRAM                    10913  
unix  3      [ ]         STREAM     CONNECTED     9700   /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     9699   
unix  3      [ ]         STREAM     CONNECTED     9626   @/tmp/hald-local/dbus-5HpHRNgGkS
unix  3      [ ]         STREAM     CONNECTED     9622   
unix  3      [ ]         STREAM     CONNECTED     9555   /var/run/acpid.socket
unix  3      [ ]         STREAM     CONNECTED     9554   
unix  3      [ ]         STREAM     CONNECTED     9553   @/tmp/hald-local/dbus-5HpHRNgGkS
unix  3      [ ]         STREAM     CONNECTED     9552   
unix  3      [ ]         STREAM     CONNECTED     6763   
unix  3      [ ]         STREAM     CONNECTED     6762   
unix  2      [ ]         DGRAM                    6761

漏洞证明：

修复方案：

加强安全意识

版权声明：转载请注明来源朱元璋@乌云

漏洞回应

厂商回应：

危害等级：中

漏洞Rank：8

确认时间：2015-06-19 17:03

厂商回复：

CNVD确认并复现所述漏洞情况，已经转由CNCERT下发给天津分中心，由天津分中心后续协调网站管理单位处置。

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0120582

漏洞标题：天津出入境检验检疫局某平台存在struts2命令执行漏洞

相关厂商：天津出入境检验检疫局

漏洞作者：朱元璋

提交时间：2015-06-15 17:15

修复时间：2015-08-03 17:04

公开时间：2015-08-03 17:04

漏洞类型：命令执行

危害等级：高

自评Rank：17

漏洞状态：已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源朱元璋@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评论

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0120582

漏洞标题：天津出入境检验检疫局某平台存在struts2命令执行漏洞

相关厂商：天津出入境检验检疫局

漏洞作者： 朱元璋

提交时间：2015-06-15 17:15

修复时间：2015-08-03 17:04

公开时间：2015-08-03 17:04

漏洞类型：命令执行

危害等级：高

自评Rank：17

漏洞状态：已交由第三方合作机构(cncert国家互联网应急中心)处理

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2015-0120582"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 朱元璋@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评论

漏洞概要关注数(24) 关注此漏洞

漏洞作者：朱元璋

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源朱元璋@乌云