当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0162899

漏洞标题:上海交通大学医学院DNS域传送漏洞

相关厂商:sjtu.edu.cn

漏洞作者: 404notfound

提交时间:2015-12-21 11:55

修复时间:2016-02-01 10:51

公开时间:2016-02-01 10:51

漏洞类型:系统/服务运维配置不当

危害等级:中

自评Rank:10

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2015-12-21: 细节已通知厂商并且等待厂商处理中
2015-12-21: 厂商已经确认,细节仅向厂商公开
2015-12-31: 细节向核心白帽子及相关领域专家公开
2016-01-10: 细节向普通白帽子公开
2016-01-20: 细节向实习白帽子公开
2016-02-01: 细节向公众公开

简要描述:

dns1.shsmu.edu.cn
上海交通大学医学院DNS服务器配置不当,导致信息泄露

详细说明:

; <<>> DiG 9.9.5-W1 <<>> @dns1.shsmu.edu.cn axfr shsmu.edu.cn
; (1 server found)
;; global options: +cmd
shsmu.edu.cn. 600 IN SOA dns1.shsmu.edu.cn. dns2.shsmu.edu.cn. 20090416 10800 3600 604800 600
shsmu.edu.cn. 600 IN NS dns1.shsmu.edu.cn.
shsmu.edu.cn. 600 IN NS dns2.shsmu.edu.cn.
shsmu.edu.cn. 600 IN MX 0 panda.shsmu.edu.cn.
shsmu.edu.cn. 600 IN MX 1 tiger.shsmu.edu.cn.
193.shsmu.edu.cn. 600 IN A 202.120.143.37
apabi.shsmu.edu.cn. 600 IN A 202.120.140.32
apc.shsmu.edu.cn. 600 IN A 202.120.143.196
archives.shsmu.edu.cn. 600 IN A 202.120.143.147
auth.shsmu.edu.cn. 600 IN A 202.120.143.78
avcon.shsmu.edu.cn. 600 IN A 202.120.143.239
ave.shsmu.edu.cn. 600 IN A 202.120.143.167
ave6.shsmu.edu.cn. 600 IN A 10.101.143.190
aveproxy.shsmu.edu.cn. 600 IN A 202.120.143.168
basic.shsmu.edu.cn. 600 IN A 202.120.143.199
bbs.shsmu.edu.cn. 600 IN A 202.120.140.30
bioinformatics.shsmu.edu.cn. 600 IN A 202.120.130.12
biostat.shsmu.edu.cn. 600 IN A 202.120.140.26
bmcb.shsmu.edu.cn. 600 IN A 202.120.129.242
bmf.shsmu.edu.cn. 600 IN A 202.120.129.241
bmf-syzx.shsmu.edu.cn. 600 IN A 202.120.143.30
bms.shsmu.edu.cn. 600 IN A 202.120.143.40
book.shsmu.edu.cn. 600 IN A 202.120.140.32
bookcheck.shsmu.edu.cn. 600 IN A 202.120.143.180
bookse.shsmu.edu.cn. 600 IN A 202.120.143.23
caiwu.shsmu.edu.cn. 600 IN A 202.120.143.43
cc.shsmu.edu.cn. 600 IN A 202.120.143.131
cda.shsmu.edu.cn. 600 IN A 202.120.129.242
cfmsf.shsmu.edu.cn. 600 IN A 202.120.143.116
cgqblog.shsmu.edu.cn. 600 IN A 202.120.138.38
cjcx.shsmu.edu.cn. 600 IN A 202.120.143.96
cnki.shsmu.edu.cn. 600 IN A 202.120.140.27
crjy.shsmu.edu.cn. 600 IN A 202.120.143.37
curriculum.shsmu.edu.cn. 600 IN A 202.120.143.56
cwc.shsmu.edu.cn. 600 IN A 202.120.143.249
cwcx.shsmu.edu.cn. 600 IN A 202.120.141.221
dailin.shsmu.edu.cn. 600 IN A 202.120.143.71
daoshi.shsmu.edu.cn. 600 IN A 202.120.143.126
dataserver.shsmu.edu.cn. 600 IN A 202.120.140.28
dds.shsmu.edu.cn. 600 IN A 202.120.143.54
dev.shsmu.edu.cn. 600 IN A 202.120.143.173
devbiology.shsmu.edu.cn. 600 IN A 202.120.130.10
devbiology1.shsmu.edu.cn. 600 IN A 202.120.143.149
develop.shsmu.edu.cn. 600 IN A 202.120.143.205
dns1.shsmu.edu.cn. 600 IN A 202.120.143.250
dns2.shsmu.edu.cn. 600 IN A 202.120.143.251
dwgk.shsmu.edu.cn. 600 IN A 202.120.143.139
dxr.shsmu.edu.cn. 600 IN A 202.120.143.197
ebook.shsmu.edu.cn. 600 IN A 202.120.140.28
eisu.shsmu.edu.cn. 600 IN A 202.120.138.38
elog.shsmu.edu.cn. 600 IN A 202.120.143.55
english.shsmu.edu.cn. 600 IN A 202.120.143.40
epacs.shsmu.edu.cn. 600 IN A 202.120.143.129
eydj.shsmu.edu.cn. 600 IN A 202.120.143.40
ftp.shsmu.edu.cn. 600 IN A 202.120.143.188
fujitsu17.shsmu.edu.cn. 600 IN A 202.120.143.17
fulltext.shsmu.edu.cn. 600 IN A 202.120.140.26
gh.shsmu.edu.cn. 600 IN A 202.120.143.40
gs.shsmu.edu.cn. 600 IN A 202.120.143.126
helix.shsmu.edu.cn. 600 IN A 202.120.143.58
hippo.shsmu.edu.cn. 600 IN A 202.120.143.251
hlxy.shsmu.edu.cn. 600 IN A 202.120.143.23
hml.shsmu.edu.cn. 600 IN A 202.120.143.59
houqin.shsmu.edu.cn. 600 IN A 202.120.143.23
idp.shsmu.edu.cn. 600 IN A 202.120.143.185
ids.shsmu.edu.cn. 600 IN A 202.120.143.183
imap.shsmu.edu.cn. 600 IN A 202.120.143.253
immunol.shsmu.edu.cn. 600 IN A 202.120.129.241
imp.shsmu.edu.cn. 600 IN A 202.120.143.185
ip.shsmu.edu.cn. 600 IN A 202.120.143.163
ipv6.shsmu.edu.cn. 600 IN A 202.120.143.195
itil.shsmu.edu.cn. 600 IN A 202.120.143.148
jfzx.shsmu.edu.cn. 600 IN A 59.78.117.39
jklab.shsmu.edu.cn. 600 IN A 202.120.143.105
jpkc.shsmu.edu.cn. 600 IN A 202.120.143.199
jswm.shsmu.edu.cn. 600 IN A 202.120.143.23
jswm-ygz.shsmu.edu.cn. 600 IN A 202.120.143.23
jvod.shsmu.edu.cn. 600 IN A 211.144.125.70
jw.shsmu.edu.cn. 600 IN A 202.120.143.115
jwc.shsmu.edu.cn. 600 IN A 202.120.143.154
jwgl.shsmu.edu.cn. 600 IN A 202.120.143.96
jxjy.shsmu.edu.cn. 600 IN A 59.78.117.11
jxzl.shsmu.edu.cn. 600 IN A 202.120.143.96
jxzx.shsmu.edu.cn. 600 IN A 202.120.143.94
jyx.shsmu.edu.cn. 600 IN A 202.120.143.173
kjc.shsmu.edu.cn. 600 IN A 202.120.143.30
koala.shsmu.edu.cn. 600 IN A 202.120.143.250
ksxt.shsmu.edu.cn. 600 IN A 202.120.143.95
kvm.shsmu.edu.cn. 600 IN A 10.101.143.208
kvm1.shsmu.edu.cn. 600 IN A 10.101.143.201
kvm2.shsmu.edu.cn. 600 IN A 10.101.143.202
kvod.shsmu.edu.cn. 600 IN A 211.144.125.70
kyxt.shsmu.edu.cn. 600 IN A 202.120.143.88
la-dept.shsmu.edu.cn. 600 IN A 202.120.143.23
lap.shsmu.edu.cn. 600 IN A 211.144.125.68
lcjn.shsmu.edu.cn. 600 IN A 202.120.143.99
lcjnsyzx.shsmu.edu.cn. 600 IN A 202.120.143.115
lgb.shsmu.edu.cn. 600 IN A 202.120.143.23
lib.shsmu.edu.cn. 600 IN A 202.120.143.42
lib-ancientbook.shsmu.edu.cn. 600 IN A 202.120.143.29
lib-cd.shsmu.edu.cn. 600 IN A 202.120.143.35
lib-opac.shsmu.edu.cn. 600 IN A 202.120.143.21
libdata.shsmu.edu.cn. 600 IN A 202.120.140.32
libftp.shsmu.edu.cn. 600 IN A 202.120.143.159
libvpn.shsmu.edu.cn. 600 IN A 180.166.197.152
lixiao.shsmu.edu.cn. 600 IN A 202.120.143.152
login.shsmu.edu.cn. 600 IN A 10.10.10.1
lyncdiscover.shsmu.edu.cn. 600 IN A 202.120.143.71
lyncdiscoverinternal.shsmu.edu.cn. 600 IN A 202.120.143.71
lyncowa-01.shsmu.edu.cn. 600 IN A 202.120.143.64
lyncweb.shsmu.edu.cn. 600 IN A 202.120.143.71
m.shsmu.edu.cn. 600 IN A 202.120.143.40
mail.shsmu.edu.cn. 600 IN A 202.120.143.253
mdl.shsmu.edu.cn. 600 IN A 202.120.138.35
meet.shsmu.edu.cn. 600 IN A 202.120.143.71
mg.shsmu.edu.cn. 600 IN A 202.120.143.240
micro.shsmu.edu.cn. 600 IN A 202.120.140.30
mmp.shsmu.edu.cn. 600 IN A 202.120.143.40
mrtg.shsmu.edu.cn. 600 IN A 202.120.143.171
mtml.shsmu.edu.cn. 600 IN A 202.120.143.136
net.shsmu.edu.cn. 600 IN A 202.120.143.177
news.shsmu.edu.cn. 600 IN A 202.120.143.40
nihd.shsmu.edu.cn. 600 IN A 202.120.143.37
oa.shsmu.edu.cn. 600 IN A 202.120.143.74
ok.shsmu.edu.cn. 600 IN A 202.120.143.177
oldsph.shsmu.edu.cn. 600 IN A 202.120.143.44
omhn.shsmu.edu.cn. 600 IN A 202.120.143.30
osjsm.shsmu.edu.cn. 600 IN A 202.120.143.159
osjsmapp.shsmu.edu.cn. 600 IN A 202.120.143.57
ovid.shsmu.edu.cn. 600 IN A 202.120.140.22
panda.shsmu.edu.cn. 600 IN A 202.120.143.253
perchat.shsmu.edu.cn. 600 IN A 202.120.143.79
pool.shsmu.edu.cn. 600 IN A 202.120.143.71
pop3.shsmu.edu.cn. 86400 IN A 202.120.143.253
portal.shsmu.edu.cn. 600 IN A 202.120.143.78
primal.shsmu.edu.cn. 600 IN A 202.120.143.82
print.shsmu.edu.cn. 600 IN A 202.120.143.30
rlzy.shsmu.edu.cn. 600 IN A 202.120.143.40
san.shsmu.edu.cn. 600 IN A 202.120.140.21
scmc.shsmu.edu.cn. 600 IN A 202.120.143.253
scmc.shsmu.edu.cn. 600 IN MX 0 panda.shsmu.edu.cn.
scmc.shsmu.edu.cn. 600 IN MX 1 tiger.shsmu.edu.cn.
service.shsmu.edu.cn. 600 IN A 202.120.143.190
sgi-vod.shsmu.edu.cn. 600 IN A 202.120.143.210
share.shsmu.edu.cn. 600 IN A 202.120.143.158
sii.shsmu.edu.cn. 600 IN A 202.120.143.138
sipexternal.shsmu.edu.cn. 600 IN A 202.120.143.71
sipinternal.shsmu.edu.cn. 600 IN A 202.120.143.71
sjc.shsmu.edu.cn. 600 IN A 202.120.143.37
sklrm.shsmu.edu.cn. 600 IN A 202.120.143.44
sm.shsmu.edu.cn. 600 IN A 202.120.143.196
smtp.shsmu.edu.cn. 86400 IN A 202.120.143.253
sph.shsmu.edu.cn. 600 IN A 202.120.143.30
ssci.shsmu.edu.cn. 600 IN A 202.120.143.177
ssmu-vod.shsmu.edu.cn. 600 IN A 202.120.138.210
syjxzx.shsmu.edu.cn. 600 IN A 202.120.140.26
syxh.shsmu.edu.cn. 600 IN A 202.120.143.166
testweb.shsmu.edu.cn. 600 IN A 202.120.143.40
tiger.shsmu.edu.cn. 600 IN A 202.120.143.252
trs.shsmu.edu.cn. 600 IN A 202.120.143.43
tuanwei.shsmu.edu.cn. 600 IN A 202.120.143.30
ulib.shsmu.edu.cn. 600 IN A 202.120.143.165
upload.shsmu.edu.cn. 600 IN A 202.120.143.59
v.shsmu.edu.cn. 600 IN A 211.144.125.71
vcenter51.shsmu.edu.cn. 600 IN A 10.101.143.210
vl-study.shsmu.edu.cn. 600 IN A 202.120.143.118
vod1.shsmu.edu.cn. 600 IN A 202.120.140.24
vod2.shsmu.edu.cn. 600 IN A 202.120.140.25
vpn.shsmu.edu.cn. 600 IN A 180.166.197.150
vpnlib.shsmu.edu.cn. 600 IN A 211.144.125.120
vspheredb.shsmu.edu.cn. 600 IN A 10.101.143.209
vspheresso.shsmu.edu.cn. 600 IN A 10.101.143.207
wifi.shsmu.edu.cn. 600 IN A 10.101.143.152
wlan.shsmu.edu.cn. 600 IN A 10.10.10.13
www.shsmu.edu.cn. 600 IN A 202.120.143.40
www1.shsmu.edu.cn. 600 IN A 202.120.143.23
www2.shsmu.edu.cn. 600 IN A 202.120.143.23
www3.shsmu.edu.cn. 600 IN A 202.120.143.23
xgb.shsmu.edu.cn. 600 IN A 202.120.1.7
xiao.shsmu.edu.cn. 600 IN A 202.120.129.242
xkghc.shsmu.edu.cn. 600 IN A 202.120.143.37
xlzx.shsmu.edu.cn. 600 IN A 202.120.143.44
xsjf.shsmu.edu.cn. 600 IN A 202.120.143.242
xuebao.shsmu.edu.cn. 600 IN A 202.120.143.160
xyh.shsmu.edu.cn. 600 IN A 202.120.143.23
yb.shsmu.edu.cn. 600 IN A 202.120.143.140
ygzs.shsmu.edu.cn. 600 IN A 202.120.143.154
yijia.shsmu.edu.cn. 600 IN A 202.120.143.128
yjscc.shsmu.edu.cn. 600 IN A 202.120.143.119
yjsy.shsmu.edu.cn. 600 IN A 202.120.143.45
yky.shsmu.edu.cn. 600 IN A 202.120.138.36
yuanban.shsmu.edu.cn. 600 IN A 202.120.143.139
yxq.shsmu.edu.cn. 600 IN A 202.120.140.26
yyx.shsmu.edu.cn. 600 IN A 202.120.143.23
yzw.shsmu.edu.cn. 600 IN A 202.120.143.44
zicc.shsmu.edu.cn. 600 IN A 202.120.143.157
zlgc.shsmu.edu.cn. 600 IN A 202.120.143.93
shsmu.edu.cn. 600 IN SOA dns1.shsmu.edu.cn. dns2.shsmu.edu.cn. 20090416 10800 3600 604800 600
;; Query time: 80 msec
;; SERVER: 202.120.143.250#53(202.120.143.250)
;; WHEN: Thu Dec 17 12:10:17 中国标准时间 2015
;; XFR size: 198 records (messages 1, bytes 4369)

漏洞证明:

; <<>> DiG 9.9.5-W1 <<>> @dns1.shsmu.edu.cn axfr shsmu.edu.cn
; (1 server found)
;; global options: +cmd
shsmu.edu.cn. 600 IN SOA dns1.shsmu.edu.cn. dns2.shsmu.edu.cn. 20090416 10800 3600 604800 600
shsmu.edu.cn. 600 IN NS dns1.shsmu.edu.cn.
shsmu.edu.cn. 600 IN NS dns2.shsmu.edu.cn.
shsmu.edu.cn. 600 IN MX 0 panda.shsmu.edu.cn.
shsmu.edu.cn. 600 IN MX 1 tiger.shsmu.edu.cn.
193.shsmu.edu.cn. 600 IN A 202.120.143.37
apabi.shsmu.edu.cn. 600 IN A 202.120.140.32
apc.shsmu.edu.cn. 600 IN A 202.120.143.196
archives.shsmu.edu.cn. 600 IN A 202.120.143.147
auth.shsmu.edu.cn. 600 IN A 202.120.143.78
avcon.shsmu.edu.cn. 600 IN A 202.120.143.239
ave.shsmu.edu.cn. 600 IN A 202.120.143.167
ave6.shsmu.edu.cn. 600 IN A 10.101.143.190
aveproxy.shsmu.edu.cn. 600 IN A 202.120.143.168
basic.shsmu.edu.cn. 600 IN A 202.120.143.199
bbs.shsmu.edu.cn. 600 IN A 202.120.140.30
bioinformatics.shsmu.edu.cn. 600 IN A 202.120.130.12
biostat.shsmu.edu.cn. 600 IN A 202.120.140.26
bmcb.shsmu.edu.cn. 600 IN A 202.120.129.242
bmf.shsmu.edu.cn. 600 IN A 202.120.129.241
bmf-syzx.shsmu.edu.cn. 600 IN A 202.120.143.30
bms.shsmu.edu.cn. 600 IN A 202.120.143.40
book.shsmu.edu.cn. 600 IN A 202.120.140.32
bookcheck.shsmu.edu.cn. 600 IN A 202.120.143.180
bookse.shsmu.edu.cn. 600 IN A 202.120.143.23
caiwu.shsmu.edu.cn. 600 IN A 202.120.143.43
cc.shsmu.edu.cn. 600 IN A 202.120.143.131
cda.shsmu.edu.cn. 600 IN A 202.120.129.242
cfmsf.shsmu.edu.cn. 600 IN A 202.120.143.116
cgqblog.shsmu.edu.cn. 600 IN A 202.120.138.38
cjcx.shsmu.edu.cn. 600 IN A 202.120.143.96
cnki.shsmu.edu.cn. 600 IN A 202.120.140.27
crjy.shsmu.edu.cn. 600 IN A 202.120.143.37
curriculum.shsmu.edu.cn. 600 IN A 202.120.143.56
cwc.shsmu.edu.cn. 600 IN A 202.120.143.249
cwcx.shsmu.edu.cn. 600 IN A 202.120.141.221
dailin.shsmu.edu.cn. 600 IN A 202.120.143.71
daoshi.shsmu.edu.cn. 600 IN A 202.120.143.126
dataserver.shsmu.edu.cn. 600 IN A 202.120.140.28
dds.shsmu.edu.cn. 600 IN A 202.120.143.54
dev.shsmu.edu.cn. 600 IN A 202.120.143.173
devbiology.shsmu.edu.cn. 600 IN A 202.120.130.10
devbiology1.shsmu.edu.cn. 600 IN A 202.120.143.149
develop.shsmu.edu.cn. 600 IN A 202.120.143.205
dns1.shsmu.edu.cn. 600 IN A 202.120.143.250
dns2.shsmu.edu.cn. 600 IN A 202.120.143.251
dwgk.shsmu.edu.cn. 600 IN A 202.120.143.139
dxr.shsmu.edu.cn. 600 IN A 202.120.143.197
ebook.shsmu.edu.cn. 600 IN A 202.120.140.28
eisu.shsmu.edu.cn. 600 IN A 202.120.138.38
elog.shsmu.edu.cn. 600 IN A 202.120.143.55
english.shsmu.edu.cn. 600 IN A 202.120.143.40
epacs.shsmu.edu.cn. 600 IN A 202.120.143.129
eydj.shsmu.edu.cn. 600 IN A 202.120.143.40
ftp.shsmu.edu.cn. 600 IN A 202.120.143.188
fujitsu17.shsmu.edu.cn. 600 IN A 202.120.143.17
fulltext.shsmu.edu.cn. 600 IN A 202.120.140.26
gh.shsmu.edu.cn. 600 IN A 202.120.143.40
gs.shsmu.edu.cn. 600 IN A 202.120.143.126
helix.shsmu.edu.cn. 600 IN A 202.120.143.58
hippo.shsmu.edu.cn. 600 IN A 202.120.143.251
hlxy.shsmu.edu.cn. 600 IN A 202.120.143.23
hml.shsmu.edu.cn. 600 IN A 202.120.143.59
houqin.shsmu.edu.cn. 600 IN A 202.120.143.23
idp.shsmu.edu.cn. 600 IN A 202.120.143.185
ids.shsmu.edu.cn. 600 IN A 202.120.143.183
imap.shsmu.edu.cn. 600 IN A 202.120.143.253
immunol.shsmu.edu.cn. 600 IN A 202.120.129.241
imp.shsmu.edu.cn. 600 IN A 202.120.143.185
ip.shsmu.edu.cn. 600 IN A 202.120.143.163
ipv6.shsmu.edu.cn. 600 IN A 202.120.143.195
itil.shsmu.edu.cn. 600 IN A 202.120.143.148
jfzx.shsmu.edu.cn. 600 IN A 59.78.117.39
jklab.shsmu.edu.cn. 600 IN A 202.120.143.105
jpkc.shsmu.edu.cn. 600 IN A 202.120.143.199
jswm.shsmu.edu.cn. 600 IN A 202.120.143.23
jswm-ygz.shsmu.edu.cn. 600 IN A 202.120.143.23
jvod.shsmu.edu.cn. 600 IN A 211.144.125.70
jw.shsmu.edu.cn. 600 IN A 202.120.143.115
jwc.shsmu.edu.cn. 600 IN A 202.120.143.154
jwgl.shsmu.edu.cn. 600 IN A 202.120.143.96
jxjy.shsmu.edu.cn. 600 IN A 59.78.117.11
jxzl.shsmu.edu.cn. 600 IN A 202.120.143.96
jxzx.shsmu.edu.cn. 600 IN A 202.120.143.94
jyx.shsmu.edu.cn. 600 IN A 202.120.143.173
kjc.shsmu.edu.cn. 600 IN A 202.120.143.30
koala.shsmu.edu.cn. 600 IN A 202.120.143.250
ksxt.shsmu.edu.cn. 600 IN A 202.120.143.95
kvm.shsmu.edu.cn. 600 IN A 10.101.143.208
kvm1.shsmu.edu.cn. 600 IN A 10.101.143.201
kvm2.shsmu.edu.cn. 600 IN A 10.101.143.202
kvod.shsmu.edu.cn. 600 IN A 211.144.125.70
kyxt.shsmu.edu.cn. 600 IN A 202.120.143.88
la-dept.shsmu.edu.cn. 600 IN A 202.120.143.23
lap.shsmu.edu.cn. 600 IN A 211.144.125.68
lcjn.shsmu.edu.cn. 600 IN A 202.120.143.99
lcjnsyzx.shsmu.edu.cn. 600 IN A 202.120.143.115
lgb.shsmu.edu.cn. 600 IN A 202.120.143.23
lib.shsmu.edu.cn. 600 IN A 202.120.143.42
lib-ancientbook.shsmu.edu.cn. 600 IN A 202.120.143.29
lib-cd.shsmu.edu.cn. 600 IN A 202.120.143.35
lib-opac.shsmu.edu.cn. 600 IN A 202.120.143.21
libdata.shsmu.edu.cn. 600 IN A 202.120.140.32
libftp.shsmu.edu.cn. 600 IN A 202.120.143.159
libvpn.shsmu.edu.cn. 600 IN A 180.166.197.152
lixiao.shsmu.edu.cn. 600 IN A 202.120.143.152
login.shsmu.edu.cn. 600 IN A 10.10.10.1
lyncdiscover.shsmu.edu.cn. 600 IN A 202.120.143.71
lyncdiscoverinternal.shsmu.edu.cn. 600 IN A 202.120.143.71
lyncowa-01.shsmu.edu.cn. 600 IN A 202.120.143.64
lyncweb.shsmu.edu.cn. 600 IN A 202.120.143.71
m.shsmu.edu.cn. 600 IN A 202.120.143.40
mail.shsmu.edu.cn. 600 IN A 202.120.143.253
mdl.shsmu.edu.cn. 600 IN A 202.120.138.35
meet.shsmu.edu.cn. 600 IN A 202.120.143.71
mg.shsmu.edu.cn. 600 IN A 202.120.143.240
micro.shsmu.edu.cn. 600 IN A 202.120.140.30
mmp.shsmu.edu.cn. 600 IN A 202.120.143.40
mrtg.shsmu.edu.cn. 600 IN A 202.120.143.171
mtml.shsmu.edu.cn. 600 IN A 202.120.143.136
net.shsmu.edu.cn. 600 IN A 202.120.143.177
news.shsmu.edu.cn. 600 IN A 202.120.143.40
nihd.shsmu.edu.cn. 600 IN A 202.120.143.37
oa.shsmu.edu.cn. 600 IN A 202.120.143.74
ok.shsmu.edu.cn. 600 IN A 202.120.143.177
oldsph.shsmu.edu.cn. 600 IN A 202.120.143.44
omhn.shsmu.edu.cn. 600 IN A 202.120.143.30
osjsm.shsmu.edu.cn. 600 IN A 202.120.143.159
osjsmapp.shsmu.edu.cn. 600 IN A 202.120.143.57
ovid.shsmu.edu.cn. 600 IN A 202.120.140.22
panda.shsmu.edu.cn. 600 IN A 202.120.143.253
perchat.shsmu.edu.cn. 600 IN A 202.120.143.79
pool.shsmu.edu.cn. 600 IN A 202.120.143.71
pop3.shsmu.edu.cn. 86400 IN A 202.120.143.253
portal.shsmu.edu.cn. 600 IN A 202.120.143.78
primal.shsmu.edu.cn. 600 IN A 202.120.143.82
print.shsmu.edu.cn. 600 IN A 202.120.143.30
rlzy.shsmu.edu.cn. 600 IN A 202.120.143.40
san.shsmu.edu.cn. 600 IN A 202.120.140.21
scmc.shsmu.edu.cn. 600 IN A 202.120.143.253
scmc.shsmu.edu.cn. 600 IN MX 0 panda.shsmu.edu.cn.
scmc.shsmu.edu.cn. 600 IN MX 1 tiger.shsmu.edu.cn.
service.shsmu.edu.cn. 600 IN A 202.120.143.190
sgi-vod.shsmu.edu.cn. 600 IN A 202.120.143.210
share.shsmu.edu.cn. 600 IN A 202.120.143.158
sii.shsmu.edu.cn. 600 IN A 202.120.143.138
sipexternal.shsmu.edu.cn. 600 IN A 202.120.143.71
sipinternal.shsmu.edu.cn. 600 IN A 202.120.143.71
sjc.shsmu.edu.cn. 600 IN A 202.120.143.37
sklrm.shsmu.edu.cn. 600 IN A 202.120.143.44
sm.shsmu.edu.cn. 600 IN A 202.120.143.196
smtp.shsmu.edu.cn. 86400 IN A 202.120.143.253
sph.shsmu.edu.cn. 600 IN A 202.120.143.30
ssci.shsmu.edu.cn. 600 IN A 202.120.143.177
ssmu-vod.shsmu.edu.cn. 600 IN A 202.120.138.210
syjxzx.shsmu.edu.cn. 600 IN A 202.120.140.26
syxh.shsmu.edu.cn. 600 IN A 202.120.143.166
testweb.shsmu.edu.cn. 600 IN A 202.120.143.40
tiger.shsmu.edu.cn. 600 IN A 202.120.143.252
trs.shsmu.edu.cn. 600 IN A 202.120.143.43
tuanwei.shsmu.edu.cn. 600 IN A 202.120.143.30
ulib.shsmu.edu.cn. 600 IN A 202.120.143.165
upload.shsmu.edu.cn. 600 IN A 202.120.143.59
v.shsmu.edu.cn. 600 IN A 211.144.125.71
vcenter51.shsmu.edu.cn. 600 IN A 10.101.143.210
vl-study.shsmu.edu.cn. 600 IN A 202.120.143.118
vod1.shsmu.edu.cn. 600 IN A 202.120.140.24
vod2.shsmu.edu.cn. 600 IN A 202.120.140.25
vpn.shsmu.edu.cn. 600 IN A 180.166.197.150
vpnlib.shsmu.edu.cn. 600 IN A 211.144.125.120
vspheredb.shsmu.edu.cn. 600 IN A 10.101.143.209
vspheresso.shsmu.edu.cn. 600 IN A 10.101.143.207
wifi.shsmu.edu.cn. 600 IN A 10.101.143.152
wlan.shsmu.edu.cn. 600 IN A 10.10.10.13
www.shsmu.edu.cn. 600 IN A 202.120.143.40
www1.shsmu.edu.cn. 600 IN A 202.120.143.23
www2.shsmu.edu.cn. 600 IN A 202.120.143.23
www3.shsmu.edu.cn. 600 IN A 202.120.143.23
xgb.shsmu.edu.cn. 600 IN A 202.120.1.7
xiao.shsmu.edu.cn. 600 IN A 202.120.129.242
xkghc.shsmu.edu.cn. 600 IN A 202.120.143.37
xlzx.shsmu.edu.cn. 600 IN A 202.120.143.44
xsjf.shsmu.edu.cn. 600 IN A 202.120.143.242
xuebao.shsmu.edu.cn. 600 IN A 202.120.143.160
xyh.shsmu.edu.cn. 600 IN A 202.120.143.23
yb.shsmu.edu.cn. 600 IN A 202.120.143.140
ygzs.shsmu.edu.cn. 600 IN A 202.120.143.154
yijia.shsmu.edu.cn. 600 IN A 202.120.143.128
yjscc.shsmu.edu.cn. 600 IN A 202.120.143.119
yjsy.shsmu.edu.cn. 600 IN A 202.120.143.45
yky.shsmu.edu.cn. 600 IN A 202.120.138.36
yuanban.shsmu.edu.cn. 600 IN A 202.120.143.139
yxq.shsmu.edu.cn. 600 IN A 202.120.140.26
yyx.shsmu.edu.cn. 600 IN A 202.120.143.23
yzw.shsmu.edu.cn. 600 IN A 202.120.143.44
zicc.shsmu.edu.cn. 600 IN A 202.120.143.157
zlgc.shsmu.edu.cn. 600 IN A 202.120.143.93
shsmu.edu.cn. 600 IN SOA dns1.shsmu.edu.cn. dns2.shsmu.edu.cn. 20090416 10800 3600 604800 600
;; Query time: 80 msec
;; SERVER: 202.120.143.250#53(202.120.143.250)
;; WHEN: Thu Dec 17 12:10:17 中国标准时间 2015
;; XFR size: 198 records (messages 1, bytes 4369)

修复方案:

严格限制允许区域传送的主机;使用TSIG key来严格定义区域传送的关系

版权声明:转载请注明来源 404notfound@乌云


漏洞回应

厂商回应:

危害等级:高

漏洞Rank:12

确认时间:2015-12-21 12:05

厂商回复:

谢谢,我们立即处理!

最新状态:

暂无


漏洞评价:

评价

  1. 2015-12-21 14:55 | 404notfound ( 普通白帽子 | Rank:259 漏洞数:71 | 考研中,有事请留言)

    这速度,666