当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2016-0169395

漏洞标题:某省中国移动系统漏洞(可影响全省海量信息/涉及全省移动机房+基站信息/涉及大量工号员工账号)

相关厂商:中国移动

漏洞作者: 路人甲

提交时间:2016-01-12 19:00

修复时间:2016-02-27 11:49

公开时间:2016-02-27 11:49

漏洞类型:命令执行

危害等级:高

自评Rank:20

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2016-01-12: 细节已通知厂商并且等待厂商处理中
2016-01-15: 厂商已经确认,细节仅向厂商公开
2016-01-25: 细节向核心白帽子及相关领域专家公开
2016-02-04: 细节向普通白帽子公开
2016-02-14: 细节向实习白帽子公开
2016-02-27: 细节向公众公开

简要描述:

某省移动系统漏洞(泄露全省5000W信息/涉及全省移动机房+基站信息/涉及大量工号员工账号)

详细说明:

**.**.**.**/nbspweb 安徽省移动网络代维系统,可查看全省移动机房信息和基站信息,涉及几万移动员工账号,5000W线路信息,以及其他大量信息,数据过大,未作具体查看。
给出部分证明危害,

漏洞证明:

db.png

xinxi.png

xinxi1.png

xinxi2.png

xinxi3.png

xinxi4.png

xinxi5.png

xinxi6.png

xinxi7.png

xinxi8.png

xinxi9.png

xinxi10.png

xinxi11.png

xinxi12.png

xinxi13.png

xinxi14.png

xinxi15.png

xinxi16.png

xinxi17.png

<jdbc-driver-params>
    <url>jdbc:oracle:thin:@**.**.**.**:1521:zhdwsid</url>
    <driver-name>oracle.jdbc.OracleDriver</driver-name>
    <properties>
      <property>
        <name>user</name>
        <value>tuser</value>
      </property>
    </properties>
    <password-encrypted>{AES}Wpr7uTbLRyFpwJRacMsTFyU0hRkbC2/MbBfIKYwZk1A=</password-encrypted>  cabletechtuser
**.**.**.**/nbspweb/c.jsp carry

数据库配置及shell

Query#0 : select * from "BASE_USER" where rownum <= 100
VARCHAR2
000022026989	13965125232	123456	 	 	 	 	 	 	2014-06-30 17:15:00	 	 	000022026990	0	 	 	000009285870	 
000000007581	zhaxiaojun	admin1111	 	 	 	 	 	 	2015-02-12 10:56:36	 	 	000000007586	0	 	 	000000007528	 
000000007585	adminchz	admin1111	 	 	 	 	 	 	2014-02-12 20:16:57	 	 	000000007587	0	 	 	000000007529	 
000000031520	menglinghao	admin1	 	 	 	 	 	 	2013-07-10 16:00:39	 	 	000000031519	0	 	 	000000506019	 
000000034932	chengxinglong	222222	 	 	 	 	 	 	2013-05-09 16:29:26	 	 	000000034931	0	 	 	000000034930	 
000022106145	18005644248	123456	 	 	 	9	 	 	2014-07-02 11:51:41	 	 	000022106146	0	 	 	0000000884	 
000000069576	songwenming	05140063	 	 	 	 	 	 	2013-07-10 16:01:58	 	 	000000069575	0	 	 	000000506027	 
000000048838	xh	xh9176	 	 	 	 	 	 	2013-05-10 10:52:16	 	 	000000048837	0	 	 	000000506013	 
000022106153	15855283383	123456	 	 	 	9	 	 	2014-07-02 11:54:56	 	 	000022106154	0	 	 	0000000884	 
000000069602	gaohua	123456	 	 	 	9	2013-08-30 16:55:17	**.**.**.**	2013-08-07 08:12:25	 	 	000000069601	1	 	 	000000035342	 
000022716204	15955128520	123456	 	 	 	9	 	 	2014-07-17 15:33:38	 	 	000022716205	0	 	 	0000000282	 
000000049008	admin	AH-zhdwadminuser01	 	 	 	 	2015-07-09 17:12:57	**.**.**.**	2014-06-03 16:36:10	 	 	000000049007	4	 	 	000000002121	 
000022716210	15215532234	123456	 	 	 	 	 	 	2014-07-17 15:33:22	 	 	000022716211	0	 	 	0000000282	 
000000588724	liuyanggen	921085	 	 	 	9	 	 	2013-05-21 08:42:59	 	 	000000588728	0	 	 	000000542283	 
000000070579	yangsuxiang	123456	 	 	 	9	 	 	2013-05-16 09:47:50	 	 	000000070578	0	 	 	000000495499	 
000000591647	15256900346	123456	 	 	 	 	 	 	2013-05-28 09:26:07	 	 	000000591648	0	 	 	000009285863	 
000022716224	15955128612	123456	 	 	 	 	 	 	2014-07-17 15:35:00	 	 	000022716225	0	 	 	0000000282	 
000000484147	15178679427	123456	 	 	 	9	 	 	2014-07-17 21:07:08	 	 	000000546582	0	 	 	0000000905	 
000022716241	18255106916	123456	 	 	 	9	 	 	2014-07-17 15:38:34	 	 	000022716242	0	 	 	0000000282	 
000000640502	13966653553	123456	 	 	 	 	 	 	2013-09-06 16:26:11	 	 	000000640503	0	 	 	000000270392	 
000022716246	15256985598	123456	 	 	 	9	 	 	2014-07-17 15:40:12	 	 	000022716247	0	 	 	0000000282	 
000000641131	lushaoxiang	123456	 	 	 	9	 	 	2013-07-14 16:54:44	 	 	000000641132	0	 	 	0000000282	 
 	mengdandan	123456	 	 	 	 	 	 	2013-07-23 15:09:43	 	 	000000661716	0	 	 	 	 
000022716252	15178523161	123456	 	 	 	9	 	 	2014-07-17 15:41:26	 	 	000022716253	0	 	 	0000000282	 
000000679646	15055104710	123456	 	 	 	 	 	 	2013-08-28 11:28:27	 	 	000000679647	0	 	 	000000575259	 
000000679650	13013092697	123456	 	 	 	9	 	 	2014-05-08 16:20:05	 	 	000000679651	0	 	 	000000575212	 
000000679654	15856929939	123456	 	 	 	 	 	 	2013-08-28 11:37:55	 	 	000000679655	0	 	 	000000575259	 
000000679687	yangpengfei	admin0	 	 	 	 	 	 	2013-08-28 18:47:08	 	 	000000679688	0	 	 	000000079196	 
000022716262	15240197117	123456	 	 	 	9	 	 	2014-07-17 15:43:52	 	 	000022716263	0	 	 	00009285911	 
000022882613	13865870685	123456	 	 	 	 	 	 	2014-07-21 15:54:19	 	 	000022882614	0	 	 	00009285988	 
000022882622	18325927885	123456	 	 	 	 	 	 	2014-07-21 15:56:15	 	 	000022882623	0	 	 	00009285988	 
000000770073	15855899622	123456	 	 	 	 	 	 	2014-07-21 15:57:39	 	 	000022882628	0	 	 	000000620294	 
000000078580	wangdejun	123456	 	 	 	 	 	 	2013-04-27 20:21:33	 	 	000000078579	0	 	 	000000509027	 
000000078585	luhua	123456	 	 	 	 	 	 	2012-09-14 16:55:53	 	 	000000078584	0	 	 	000000007542	 
000000079204	zhangjianye	369369	 	 	 	 	 	 	2013-05-10 14:33:10	 	 	000000079203	0	 	 	000000007530	 
000000079206	xiaqiming	123456	 	 	 	 	 	 	2013-04-28 16:18:39	 	 	000000079205	0	 	 	000000502597	 
000000079208	zhangyatao	661572	 	 	 	 	 	 	2013-04-29 09:23:16	 	 	000000079207	0	 	 	000000502833	 
000000079210	caolei	135246	 	 	 	 	 	 	2013-05-23 11:07:59	 	 	000000079209	0	 	 	000000502833	 
000000079212	mayuhong	123456	 	 	 	 	 	 	2013-04-28 16:10:11	 	 	000000079211	0	 	 	000000502597	 
000022882640	15805588561	123456	 	 	 	 	 	 	2014-07-21 16:00:10	 	 	000022882641	0	 	 	000000620294	 
000000079216	gaoxuejun	123456	 	 	 	 	 	 	2013-09-07 18:59:40	 	 	000000079215	0	 	 	000000079193	 
000022882649	15855832220	123456	 	 	 	 	 	 	2014-07-21 16:02:08	 	 	000022882650	0	 	 	000000620294	 
000000079220	xieyong	123456	 	 	 	 	 	 	2013-04-28 16:19:33	 	 	000000079219	0	 	 	000000079194	 
000000079222	jiazixin	123456	 	 	 	 	 	 	2015-06-05 17:13:43	 	 	000000079221	0	 	 	000000079194	 
000000079224	lihao_fn	123456	 	 	 	 	 	 	2013-04-28 15:53:15	 	 	000000079223	0	 	 	000000079194	 
000000079226	wangxianwei	wxw123456	 	 	 	 	 	 	2015-05-12 11:17:46	 	 	000000079225	0	 	 	000000079194	 
000000079228	niesenhu	Nmm10086	 	 	 	 	 	 	2015-02-13 14:56:45	 	 	000000079227	0	 	 	000000079194	 
000000007596	adminmas	admin1111	 	 	 	 	 	 	2014-12-08 17:03:13	 	 	000000007597	0	 	 	000000542833	 
000000007598	huoliming	szcs660048	 	 	 	9	 	 	2014-09-09 16:21:49	 	 	000000007601	0	 	 	000000007541	 
000000026998	yangzhu	yz123	 	 	 	 	 	 	2014-08-13 17:27:13	 	 	000000026999	0	 	 	000016334333	 
000022882654	15720586311	123456	 	 	 	 	 	 	2014-07-21 16:03:46	 	 	000022882655	0	 	 	000000620294	 
000000035348	admincf	admin2	 	 	 	9	 	 	2013-04-27 16:52:38	 	 	000000035347	0	 	 	000000035340	 
000022882670	18805689831	123456	 	 	 	 	 	 	2014-07-21 16:09:25	 	 	000022882671	0	 	 	000000620294	 
000000045812	liufei	123456	 	 	 	 	 	 	2013-05-27 10:58:52	 	 	000000045811	0	 	 	000000034934	 
000000045832	liuhaiye	123456	 	 	 	9	 	 	2013-05-09 16:20:53	 	 	000000045831	0	 	 	000000034912	 
000000069568	zhoufujian	123456	 	 	 	 	 	 	2013-11-13 09:54:54	 	 	000000069567	0	 	 	000000506026	 
000000069580	wangyuzhong	123456	 	 	 	 	 	 	2013-04-27 14:59:12	 	 	000000069579	0	 	 	000000035338	 
000022882689	18226359922	123456	 	 	 	 	 	 	2014-07-21 16:13:30	 	 	000022882690	0	 	 	00009285990	 
000022882741	13655585331	123456	 	 	 	9	 	 	2014-07-21 16:28:26	 	 	000022882742	0	 	 	00009285987	 
000000069592	lixin	123456	 	 	 	9	 	 	2013-04-27 17:12:10	 	 	000000069591	0	 	 	000000035340	 
0010000896	masm	123456	 	 	 	 	 	 	2006-05-25 16:11:24	 	 	0000100455	0	 	 	000000007540	 
000000069596	donghaitao	123456	 	 	 	 	 	 	2013-04-27 17:06:11	 	 	000000069595	0	 	 	000000035340	 
0010000898	ligang	123456	 	 	 	 	 	 	2014-03-14 10:49:09	 	 	0000100457	0	 	 	000000007544	 
000022882756	15956801351	123456	 	 	 	 	 	 	2014-07-21 16:31:46	 	 	000022882757	0	 	 	00009285989	 
000009694152	18226906321	654321	 	 	 	9	 	 	2014-08-07 09:13:50	 	 	000000483729	0	 	 	000000591530	 
000000485166	gubinbin	123456	 	 	 	 	 	 	2014-11-06 08:58:55	 	 	000000486186	0	 	 	000028042476	 
000000485214	caoyan	123456	 	 	 	 	 	 	2013-05-09 14:10:55	 	 	000000486227	0	 	 	000000085591	 
000000487640	丁汉民gz	123456	 	 	 	 	 	 	2013-04-21 12:41:37	 	 	000000487639	0	 	 	000000270683	 
000000488259	15215555328	654321	 	 	 	 	 	 	2014-10-17 09:43:24	 	 	000000488275	0	 	 	0000000303	 
000022882764	15055598576	123456	 	 	 	 	 	 	2014-07-21 16:33:39	 	 	000022882765	0	 	 	00009285989	 
000022882780	15955886396	123456	 	 	 	 	 	 	2014-07-21 16:37:40	 	 	000022882781	0	 	 	00009285989	 
000000535636	jituan03	AHmobile-jttest01	 	 	 	 	 	 	2013-05-09 13:34:53	 	 	000000535637	0	 	 	000000544116	 
0010000908	zhangleibz	zlj201906	 	 	 	 	 	 	2013-05-27 11:11:40	 	 	0000100467	0	 	 	000000543496	 
000000640587	13966827459	123456	 	 	 	9	 	 	2014-07-21 16:41:39	 	 	000022882792	0	 	 	000000620294	 
000022882798	18705588071	123456	 	 	 	 	 	 	2014-07-21 16:44:11	 	 	000022882799	0	 	 	000000620294	 
000000535648	jituan04	AHmobile-jttest01	 	 	 	 	 	 	2013-05-09 13:35:31	 	 	000000535649	0	 	 	000000544116	 
0010000912	zhoujian11	123456	 	 	 	 	 	 	2008-05-27 11:09:35	 	 	0000100471	0	 	 	000000007538	 
0010000913	zhoujian	123456	 	 	 	9	 	 	2015-06-02 16:16:47	 	 	0000100472	0	 	 	000000007538	 
000000535665	jituan05	AHmobile-jttest01	 	 	 	 	 	 	2013-05-09 13:36:01	 	 	000000535666	0	 	 	000000544116	 
000000535675	jituan06	AHmobile-jttest01	 	 	 	 	 	 	2013-05-09 13:36:22	 	 	000000535676	0	 	 	000000544116	 
000000956932	sunpingla	admin11	 	 	 	 	 	 	2013-05-10 17:49:57	 	 	000000558683	0	 	 	000000260476	 
000022882806	18255849558	123456	 	 	 	 	 	 	2014-07-21 16:46:28	 	 	000022882807	0	 	 	000000620294	 
000022882822	13855881981	123456	 	 	 	 	 	 	2014-07-21 16:49:43	 	 	000022882823	0	 	 	000000620294	 
0010000924	panli	12345678	 	 	 	 	 	 	2014-01-07 14:38:42	 	 	0000100483	0	 	 	000000544680	 
000009704291	18755520713	123456	 	 	 	 	 	 	2015-12-02 15:37:11	 	 	000000538000	0	 	 	00009285936	 
000000558817	xiajunwubb	123456	 	 	 	 	 	 	2013-05-10 17:54:06	 	 	000000558818	0	 	 	000000271513	 
000000558838	wangleixc	admin11	 	 	 	 	 	 	2013-05-10 17:48:56	 	 	000000558839	0	 	 	000000271506	 
000022106120	18919769200	123456	 	 	 	9	 	 	2014-07-02 11:41:50	 	 	000022106121	0	 	 	0000000882	 
000022882836	15855807856	123456	 	 	 	 	 	 	2014-07-21 16:53:11	 	 	000022882837	0	 	 	000000620294	 
0010000931	hjq	123456	 	 	 	 	 	 	2013-05-10 10:54:41	 	 	0000100490	0	 	 	000000536034	 
000022882846	15032230132	123456	 	 	 	 	 	 	2014-07-21 16:56:12	 	 	000022882847	0	 	 	000000620294	 
000022882903	13956802998	123456	 	 	 	 	 	 	2014-07-21 17:12:22	 	 	000022882904	0	 	 	000000620294	 
000000589418	hujiansx	hjhs321	 	 	 	9	 	 	2013-07-11 10:41:32	 	 	000000589419	0	 	 	000000085638	 
000022882938	13359062346	123456	 	 	 	 	 	 	2014-07-21 17:17:52	 	 	000022882939	0	 	 	000000620294	 
000000564891	15855966523	123456	 	 	 	 	 	 	2013-10-16 16:11:59	 	 	000000590488	0	 	 	00009285911	 
000022882961	13865894613	123456	 	 	 	 	 	 	2014-07-21 17:24:16	 	 	000022882962	0	 	 	000000620294	 
000022882973	13955806908	123456	 	 	 	 	 	 	2014-07-21 17:25:41	 	 	000022882974	0	 	 	000000620294	 
000022882987	15055890877	123456	 	 	 	 	 	 	2014-07-21 17:31:20	 	 	000022882988	0	 	 	000000620294	 
000022883037	15005580835	123456	 	 	 	 	 	 	2014-07-21 17:35:56	 	 	000022883038	0	 	 	000000620294	 
000000641678	18326530502	123456

部分验证账号

Query#0 : select t.TABLE_NAME,t.NUM_ROWS from user_tables t order by NUM_ROWS desc
TABLE_NAME
VARCHAR2	NUM_ROWS
NUMBER
MM_RESOURCECHECK_REPORTDETAIL	56696562
AH_MOBILE_LOG	31195893
SM_MT	29711243
WPLAN_PATROLRECORD_BAK150929	20412229
SM_MT_150730	14149933
WTROUBLE_FAULT_LOG	6250432
RES_DGXX	5405546
WPLAN_PATROLRECORD	4731272
MM_SYN_ERROR	4087394
JBPM4_HIST_ACTINST	3468981
HISTORYPOSITION	3442778
JBPM4_HIST_TASK20151223	3205441
JBPM4_HIST_TASK	3156565
JBPM4_HIST_TASK_EXT20151223	3066803
AH_FAULT_FLOW_HIS	2999854
JBPM4_HIST_TASK_EXT	2970882
AH_OILENGINE_HISTORY	2548980
RES_NE	2486024
RES_NE20151105	2382882
RES_NE20151014	2339206
RES_NE_20150916	2305371
RES_NE_20150925	2302544
REPORT_DETAIL_TEMP	2301022
RES_NE_20150921	2296673
RES_NE_20150910	2277584
RES_NE_20150909	2275353
RES_NE_20150908	2274269
MM_FAULT_WARNHISTORY	2262398
RES_NE_201509	2260718
RES_NE_20150902	2255514
RES_NE_ZHAI_1721	2253775
RES_NE_20150831	2253691
RES_NE_BOZHOU	2253691
RES_NE111	2253691
RES_NE_ZHAI_1821	2253602
JBPM4_VARIABLE	2198343
WLOCALE_PROCESS	2158787
MM_TASKINFO	2142757
BASE_USERONLINELOG	1938384
MM_EOMS_LOG	1912775
M_WEB_ACTION	1879216
REPORT_TEMP	1808545
WTROUBLE_REPLY_HIS	1792346
MM_EMS_LOG	1763650
MM_TASKINFO_150824	1623732
ELECPOLE_TEMP	1549838
POLEWAY_SEG_TEMP	1542069
RES_GLD	1542069
WTROUBLE_SENDTASK	1533820
WTROUBLE_REPLY	1507135
AH_WTROUBLE_EOMS	1486156
RES_BSD	1470469
JBPM4_HIST_PI_EXT	1300036
JBPM4_HIST_PI_EXT20151223	1293700
JBPM4_HIST_PROCINST	1275567
WPLAN_PATROLRESOURCE	1266124
JBPM4_EXECUTION_EXT	1236814
MM_FAULT_STAT	1160179
WPLAN_EXECUTERESULT_DETAIL	974625
MM_TASKINFO_150731	768744
WPLAN_EXECUTERESULT	755737
RES_GDD	746404
MM_RESOURCECHECK_REPORT	655640
PIPEWELL_TEMP	581706
POINTINFO	557176
WTROUBLE_ALARM	547113
WPLAN_RESOURCECHECK	541499
RES_GJXX	515991
MM_ASSESS_DETAILS	498121
MM_ASSESSMENTDETAILS	487195
MM_ASSESS_DETAILS_20150914	487100
AH_PBOSS_DETAIL	470960
RES_RESOURCETYPE	469916
RES_RESOURCETYPE20151028	458800
AH_OE_EOMS	450279
MM_OE_SENDTASK	446706
ONLINEMAN	443985
AH_OE_EOMS_STATIS	440397
MM_OE_REPLY	431016
EMOS_TEMP	370569
SUBLINE2POINT	351392
AH_PBOSS_PROCESS_INFO	348607
RES_ZDXX	348044
MM_RESOURCECHECK_CONTENT	331692
RES_MAINTENANCE	330588
RES_MAINTENANCE20151028	327324
RES_ZDXX20151028	325249
TEMP_PATROL	291667
AH_NETWORKRESOURCE	246054
AH_MAINTENANCE_QUALITY	241265
RES_NE_TEMP	224425
ANNEX_ADD_ONE	220506
RS_PATROLADDRESSINFO	219149
MM_FAULT_EXEC_DETAIL_STATIS	199060
MM_RATION_ITEM_TASKINFO	192670
S34_IDX$	190521
MM_RATION_ITEM_TASKINFO_150831	178371
M_TERMINAL_SESSION	171986
RES_GROUPCUSTOMER	159954
JBPM4_EXECUTION	157496
JBPM4_TASK	143806
JBPM4_LOB	141958
MM_RESOURCECHECK_C37DETAIL	139258
ROOM_TEMP	137936
MM_SER_TIME	136034
SITE_TEMP	135543
RES_BSXX	131437
AH_WTROUBLE_ADD	130958
RES_NE_STATION	129064
FILEPATHINFO	121494
MM_OE_STATION	119555
RES_JF	116175
USER_TEMP	114223
MM_SER_TIME_TOTAL	112381
MM_SER_TIME_TOTAL_150824	103515
RES_NE_CESHI	96720
RES_ZDXX_AH	95475
RES_GROUPCUSTOMER1	93315
JFBM_TEMP	86844
MM_PATROL_QUARTER_SCORE	83890
WPLAN_EXECUTERESULT_DETAIL_	82066
AH_BARCODESEQUENCE	81790
STRABURY_SEG_TEMP	74002
WPLAN_PATROLSTATISTIC	70534
MARKSTONE_TEMP	70395
MM_FAULT_STATE_IGNORE	69042
TERMINALPERSONRELATION	64389
C37DETAIL_REPORT_TEMP	62318
NETELEMENT_FAULT_MAINTENANCE	62054
RES_REPEATER	62015
RES_TOWER	54876
BASE_PERMISSIONSCOPE	52587
M_WEB_SESSION	52396
MM_EXAMINATIONRESULTS	51189
JBPM4_PARTICIPATION	49247
RES_GLD_XT	49087
MM_ASSESS_RESULTS20151223	44232
MM_ASSESS_RESULTS	43285
AH_ITEMRESULT	43146
CUSTOMER_TEMP	41846
POLEWAY_TEMP	41756
MM_ASSESS_RESULTS20150922	41574
MM_ASSESS_RESULTS_20150914	41526
TOWER_TEMP	40785
MM_ASSESS_RESULTS_150730	40337
INTERNET_LINE_TEMP	36127
AH_FEE_BALANCE_UPDETAIL151028	35381
BTSSITE_TEMP	35239
MM_RATION_ITEM_TASKINFO_150832	35104
RES_BTSSITE	34950
TEST_EOMS	34464
WTASK_TRANSFER	34241
RES_BROADCOMMUNTY	33145
BROADCOMMUNTY_TEMP	32252
MM_OE_OILENGINERECORD	30439
RS_MAINTENANCE	29755
BASE_RELATION_BUSINESS	28512
AH_FEE_BALANCE_UPDETAIL	28363
RES_NODEB	28264
RES_NE_HISTORY	27845
RES_GDD_XT	27513
TAST_TEST	27288
EOMS_TEST	26781
PIPELINE_TEMP	26438
MM_SER_TIME_TOTAL_150731	25386
WTASK_ORDER	24460
JBPM4_EXECUTION_FORK_EXT	24445
RS_BASESTATION	24264
BASE_TOOLINFO20151031	24142
WTASK_COMMONORDER	23625
BASE_TOOLINFO	22767
BASE_TOOLINFO20151030	22660
JBPM4_BZ_TASK_MESSAGE	22400
NETELEMENT_FAULT_MAINTENANCE_	22313
REPEATER_TEMP	22259
BASE_TOOLINFO20151028	22108
TRANS_LINE_TEMP	22089
NODEB_TEMP	21175
BASE_TOOLINFO_20151023	19936
BASE_TOOLINFO201510171	19895
BASE_USERROLE	19030
BASE_TOOLINFO20151017	18491
BASE_TOOLINFO_1	17925
BASE_TOOLINFO_BAK	17922
MM_POINTINFO_STATICS	17903
WTASK_RECEIPT	17884
BASE_PERSON	17215
AH_RESOURCE_ALLOCATION	16981
MM_PROPERTY_INFO	16972
MM_TASKINFO_ID150831	16611
RS_OUTDOOR_FACILITIES	16382
BASE_TOOLINFO20151013BAK	16261
WPLAN_TEMPLATESUBITEM	16075
MM_PROPERTY_CONCORDAT	14347
MM_PROPERTYSITE_REL	14097
WPLAN_PATROLINFO	13745
MM_EXAMERESULT_MULT	13383
C37DETAIL_TEMP	13150
WPLAN_TEMPLATEPLAN	13069
BASE_PERSON_20150818	13049
TASK_EXCEPTION_SMS_LOG	13010
TEMPGD	12277
MM_EXAMERESULT_MULT151029	12189
MM_EXAMERESULT_MULT_151028	12184
MM_ACCIDENT_TASK_ITEM	11825
BASE_TERMINALINFO	11618
WPLAN_PATROLAPPROVE	11527
BASE_USER	11032
WPLAN_PATROLSUBITEM	10961
WPLAN_EXECUTERESULT_TOTAL	10847
MM_ACCIDENT_INFO	10587
MM_COMPLAIN_SENDTASK	10465
MM_COMPLAIN_REPLY_AH	10448
RES_WLAN	10197
ENODEB_TEMP	10078
AH_COMPLAIN_EOMS	9965
SUBLINEINFO	9587
MM_ASSESS_REPORT_REL	9491
SYS_EXPORT_SCHEMA_15	9474
SYS_EXPORT_SCHEMA_16	9468
SYS_EXPORT_SCHEMA_14	9360
SYS_EXPORT_SCHEMA_13	9343
SYS_EXPORT_SCHEMA_11	9335
SYS_EXPORT_SCHEMA_12	9333
SYS_EXPORT_SCHEMA_10	9317
SYS_EXPORT_SCHEMA_09	9305
NOTICE_SENDEE	9302
WTROUBLE_EOMS_ERROR	9291
SYS_EXPORT_SCHEMA_08	9241
SYS_EXPORT_SCHEMA_07	9220
AH_EXAMVERIFY	9192
AH_EXAMVERIFYRECORD	9192
MM_ASSESS_REPORT_REL_20151022	9143
SYS_EXPORT_SCHEMA_06	9113
SYS_EXPORT_SCHEMA_05	9097
SYS_EXPORT_SCHEMA_04	9073
WTROUBLE_TASKPROCESS	9064
SYS_EXPORT_SCHEMA_03	9035
EOMS_CLR_TEMP	8900
MM_ASSESS_REPORT_REL_20150914	8896
MM_ASSESS_REPORT_REL_20150825	8837
SYS_EXPORT_SCHEMA_02	8630
EOMS_CLR_OK_TEMP	8580
SYS_EXPORT_SCHEMA_01	8501
MM_EXAMRESULTREPORTREL	8374
MM_ASSESS_CONTENT_REL111	8344
KFC	8343
MM_ASSESS_CONTENT_REL_BAK	7919
WPLAN_TEMPLATEPLAN_BAK	7889
SPEECH_LINE_TEMP	7753
TEMP_EOMS	7390
MM_INSPECTIONTASK_REL	7149
EOMS_TEMP	6860
BASE_CERTIFICATE	6643
HOT_POIINT_TEMP	6377
AH_OILENGINE_DETAIL	5709
MM_ASSESS_REPORT	5487
AH_RATINGFORMITEM	5292
MM_ASSESS_REPORT_20150914	5163
AH_FEE_BALANCE_UPMONTHLIST1028	4949
AH_FEE_EXECUTE_PRICE	4896
REPORT_T	4891
RESPONSIBLE	4842
MM_EXAMRESULTSREPORT	4806
WPLAN_TEMP	4679
ZD_IMP	4590
RES_NE_TEST	4491
TASK_TEST	4416
MM_OE_OILENGINE	4341
AH_MONTHRESULT	4249
AH_FEE_COSTNORM	4091
AH_FEE_COSTNORM20151218	4091
AH_FAULT_STATBYNETWORKTYPE	3790
PIPELINE_SEG_TEMP	3729
BASE_PATROLMANINFO	3551
AH_FEE_BALANCE_UPMONTHLIST	3500
BASE_PATROLMANINFO20151023	3464
BASE_PATROLMANINFO20151015	3449
MM_RESOURCECHECKSTATISTICS	3432
BASE_PATROLPERSONREL	3402
MM_ASSESS_CONTENT_REL	3214
AH_FAULT_WHOLESTATBYFAULTCOMP	3191
AH_PERSONFLOW	3191
MM_ASSESS_PROVINCE_ITEM	3067
AH_FEE_BALANCE_TOTAL	2969
MM_ASSESS_ITEM_REL111	2841
MM_ASSESS_CONTENT_REL20151026	2834
MM_ASSESS_CONTENT_REL_20150829	2737
MM_APPRAISE_CONTENT	2723
BASE_MENU	2533
MM_ASSESS_ITEM_REL_BAK	2456
PERSON_CHANGE_INFO	2418
AH_PBOSS_IMPORT_USER	2168
TEMP	2107
EMOS_TEMP_ID	2092
MM_RESOURCECHECK_TYPE	2064
MM_OE_OILENGINE_BEFORE	2057
AH_ZDXXLONLAT_LOG	1924
RES_BSD_XT	1841
MM_FAULT_EXEC_STATIS	1831
GPRS_MO	1743
QUEST_SOO_EVENT_CATEGORIES	1641
TEST_OIL	1607
WTROUBLE_DELETE	1603
STRABURY_TEMP	1581
HISTORYPOSITION_CAR	1569
AH_FAULT_NETWORKFAULTTOP	1500
PRES_NE_TEMP_PATROL1	1443
USERACTIONLOG	1366
BASE_DEFINED_GROUP_OBJ	1325
EOMS_TEMP_1	1320
SM_MO	1308
AH_FEE_BALANCE_UPLIST	1294
AH_FEE_BALANCE_UPLIST151028	1289
BASE_ORGANIZE	1267
BASE_ORGANIZE_20150922	1237
BASE_ORGANIZE_201509223	1237
BASE_ORGANIZE_20150911	1228
CAR_INFO	1228
BASE_ORGANIZE20150909	1218
BASE_ORGANIZE_20150828	1215
TEST	1214
CAR_INFO20151030	1192
MM_MODULE_PHONE_SETTING	1146
MM_ASSESS_ITEM_REL	1109
CAR_INFO20151016	1084
OE_OILENGINE	1068
WPLAN_PATROLITEM	1055
AH_GROUPCOMPLAIN_EOMS	1029
BUSINESS_CONTACT_LETTER_SENDEE	1024
BASE_SYSDICTIONARY	1024
MM_GROUPCOMPLAIN_SENDTASK	1023
MM_GROUPCOMPLAIN_REPLY_AH	1016
MM_ASSESS_ITEM_REL20151026	986
MM_APPRAISE_ITEM	980
AH_RESNAME_MODIFYLOG	949
AH_FAULT_WHOLESTATBYREGIONORG	928
AH_FAULT_ALARMSAMETOP	900
AH_THIRDPARTYCODE	896
MM_ASSESS_ITEM_REL_20150829	885
AH_FEE_REGIONUP	840
AH_FAULT_BZSTATTOP	838
AH_FEE_BALANCE_REPORT	828
AH_FEE_BALANCE_REPORT151028	826
AH_PERSONRATINGFORM	807
AH_RESOURCE_INSTRUMENT	787
CAR_ASSIGN	774
JBMP4_ACCREDIT_USERID	770
RS_INDOOROVERRIDE	754
BUSINESSLOG	742
BASE_USER_SHORTCUTS	595
MM_DB_SQL_TIMES	560
AH_FEE_BALANCE	550
AH_MAINTENANCE_QUALITY_RTEMP	544
AH_FEE_BALANCE_AMERCELIST	536
AH_FEE_BALANCE151028	533
WPLAN_DEVICE_TEMPLATE	468
PERSON_TEMP	464
AH_THIRDPARTYCODE_TEMP	445
MM_ALARM_STEPS	405
MM_FOUR_NORM_VALUE	386
AH_FEE_BUDGET_DETAIL	381
WPLAN_TEMPLATE	379
BASE_TOOLCODE	376
EOMS_CS	374
MM_ASSESS_TABLE_BAK	371
DELETE_MM_TASKINFO	365
AH_PBOSS_EXPORT_USER	342
MM_ES_PERSON_RELATION	337
JBPM4_DEPLOYPROP	316
MM_ASSESS_WEIGHT_CONFIG	308
MM_ACCIDENT_TYPE	300
BASE_PERSON1	276
RS_OUTDOOR_FACILITIES_OLD	273
MM_RATION_ITEM	264
MM_JT_DWRWQK_REPORT	244
AH_SECURITY_AUTH	240
SM_RPT	239
BASE_CONTRACTORINFO	236
MM_OE_MODEL	234
EOMS_TASK1	229
COMPONENT_CONFIG_COLUMN	197
AH_FEE_BUDGET_TOTAL	192
RS_REPEATER	180
RES_MAINTENANCE_TEMP	174
BASE_PERSONTWO	173
AH_ZX_2014_10_EXCEL	166
AH_FAULT_WHOLESTATBYORG	157
MM_PROCEDURE_LOG	156
MM_CONTACT_LETTER_SENDEE	155
OE_TEST	154
PERSON_JOB_INFO	152
PERSON_EDUCATE_INFO	150
AH_NETWORKRESOURCE_TEMP	144
BASE_REGION	143
MM_JT_ZDWRYXX_REPORT	142
MM_ASSESS_TABLE	141
MM_ASSESS_TABLE111	135
MM_ASSESS_TABLE20151026	135
MM_APPRAISE_TABLE	134
MM_ASSESS_TABLE_20150829	129
CAR_APPLY_DISPATCH	126
PER_USER_IMP	122
AH_EXCELREPORT_RECODE	121
AH_FAULT_WHOLESTATBYINTERVAL	120
EOMS_TEMP_2	111
MM_ALARM_REASON	109
BASE_GISROLERESOURCE	105
MM_SPECIALTYWEIGHING	103
OE_DISTPATCHTASK_STATION	101
WTROUBLE_TEMPLATE	96
OE_DISPATCHTASK	94
AH_FEE_VALUATION_NORM	93
MM_EXAM_QUESTION_ITEM	92
JBPM4_DEPLOYMENT	81
JBPM4_DEFINEINFO	78
NOTICE_ISREAD	75
AH_FAULT_WHOLESTATBYBZ	75
RYYH	70
MM_FOUR_NORM	68
BASE_ROLE	67
SHORTMESSAGE_LINE_TEMP	65
MM_MONTHNOTICEMAN	63
WPLAN_PATROL_DELAY	63
WTROUBLE_TEMP	62
MM_OBJECT_COMPILE_LOG	62
RES_TEMP_TONGJI	62
RE2_TEMP	61
BASE_PERSON_USER	60
MM_JT_ZYYBXX_REPORT	58
MM_RATION_PERSONPICK	56
MM_CONTACT_LETTER_HANDLE_USER	53
AH_REPORT_STATICTABLE	53
DROP_STATION	52
AH_FEE_SCALE	51
MM_OE_OILENGINE_MODEL	50
AH_FEE_SCENE	49
MM_JT_DWWHZLZB_REPORT	47
RS_EQUIPMENT_DICT	45
MM_CONTACT_LETTER_HISTORY	45
AH_EOMS_SYS_CODE	43
AH_EXCELREPORT_SHEETNUM	38
WPLAN_PATROLDEVICE	38
IMP_POINT_XLS	37
AH_THIRDPARTYORG	36
MM_ALARM_WORKREADY	35
WPLAN_TEMP_3	34
MM_JT_DWZYXX_REPORT	32
OE_OILENGINE_MODEL	31
WPLAN_PLAN_DEVICE	30
NOTICE_CLOB	30
MM_QUALITYINSPECTION	30
RES_DELETE_CASCAD	30
MM_JT_DWFY_REPORT	28
WPLAN_TEMP_2	28
WLSTORE	27
AH_FAULT_C30FAULTRATE	26
AH_THIRDCORRECTIONGROUP	26
BASE_DEFINED_GROUP	25
MM_EXAM_QUESTION	25
MM_JT_DWCJXX_REPORT	24
LP_REMEDY_STATUS	24
AH_RATINGFORM	24
MM_PATROL_SCORE_RULE	24
MM_FOUR_APPRAISE	22
TROUBLECODE	22
OE_OILENGINERECORD	22
CRONJOB_SCHEDULE	21
MM_DP_PATROL_GRADE	20
MM_CHANGE_DATALIST	19
MM_INTERFACE_DICTIONARY	18
MM_ACCIDENT_LEVEL	18
AH_FEE_CONTRACTOR_PRICE	18
WMAINTAIN_RESULT	17
RS_GROUPCUSTOMER	17
TEST002	17
MM_JT_ZDWRYXX_REPORT_BAK	16
MM_ASSESS_CONFIG	16
MM_JT_DWZYXX_REPORT_BAK	16
BUSINESS_CONTACT_LETTER	15
BASE_PERMISSIONITEM	14
MM_PERSON_REMIND	13
WPLAN_PATROLSTATISTIC_C30	13
MM_CONTACT_LETTER	13
MM_ALARM_MAININFO	13
MM_ASSESS_PROVINCE	13
WPLAN_TEMP_1	12
TEST_GROUP	12
MM_YHGL	12
AH_FEE_BUDGET_TASK	12
QUEST_SOO_PLAN_TABLE	12
DB_VERSION	12
MM_CHANGE_TASK	11
MM_FOUR_O_NORM_SCORE	10
MM_FOUR_I_NORM_SCORE	10
JBPM4_FLOWCHART_NODELOCATION	9
COMPONENT_CONFIG_TABLE	9
MM_JT_XTJSJD_REPORT	9
RS_EQUIPMENT_TYPE	9
MM_RS_PATROLCYCLE_SET	7
AH_FEE_CITY_GATHER	7
MM_OBJECT_COMPILE_IGNORE	7
AH_FEE_BALANCE_FORMULA	7
WPLAN_PATROLRESOURCE_L	7
LINECLASSDIC	6
MM_EXAM_PAPER_QUESTION	6
AH_FAMILYBAND_RECODE	6
MM_RATION_STO	6
CODE_SEQUENCE	5
MM_BUSINESS_WEIGHT	5
OE_GENELECTRICITY_TIME	5
AH_EXAM_PERSON_BUSINESSTYPE	5
TASKOPERATION	5
MM_EXAM_REPORT_DETAIL	5
WMAINTAIN_SITE	5
TROUBLETYPE	4
BASE_SEQUENCE	4
MM_PROPERTY_COST	4
MM_EXAM_PAPER_RULE	4
BASE_DEPTMENT	4
MM_EXAM_ENROLL	3
BASE_GISLAYER	3
WMAINTAIN_PLAN	3
MM_EXAM_REPORT	3
OE_STATION_INFO	3
MM_JT_DWGLY_REPORT	3
BASE_GIS_COORDINATE	2
APPCONFIG	2
AH_FAMILYBAND_TROUBLE	2
AH_EXAM_PERSON	2
MM_EXAM_TAKE_QUSETION	2
MM_EXAM_INITIATE_ITEM	2
MM_EXAM_INITIATE	2
MM_EXAM_PAPER	2
BASE_PERSON_GRID	2
WPLAN_NOPATROLSTATION	2
BASE_CONCORDATINFO	2
MM_JT_DWGLY_REPORT_BAK	2
MONTH_TIMES_COST	2
MONTH_CHECK_COST	2
MM_EXAM_TAKE_PERSON	1
JBPM4_PROPERTY	1
MM_RESOURCE_TOTAL	1
BASE_USERSSO	1
MM_EXAM_ENROLL_BACK	1
NOTICE	1
QUEST_SOO_VERSION	1
OE_OILRECORD	1
AH_FEE_BUDGET_LIST	1
PERSON_REWARD_INFO	1
PERSON_TRAIN_INFO	1
QUEST_SOO_SCHEMA_VERSIONS	1
RS_CELL	1
LINEINFO	1
AH_EXAM_NOTICE	1
QUEST_SOO_PARSE_TIME_TRACK	1

数据库结构

修复方案:

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:11

确认时间:2016-01-15 17:42

厂商回复:

CNVD未复现所述情况,已经转由CNCERT向中国移动集团公司通报,由其后续协调网站管理部门处置.

最新状态:

暂无

漏洞评价:

评价