新浪某站数据库信息泄露

漏洞概要

缺陷编号:WooYun-2012-06362

漏洞标题:新浪某站数据库信息泄露

相关厂商:新浪

漏洞作者:Errorera

提交时间:2012-04-25 02:57

公开时间:2012-06-09 02:58

漏洞类型:网络敏感信息泄漏

危害等级:中

自评Rank:10

漏洞状态:厂商已经确认

Tags标签:

漏洞详情

披露状态:

2012-04-25: 细节已通知厂商并且等待厂商处理中
2012-04-25: 厂商已经确认,细节仅向厂商公开
2012-05-05: 细节向核心白帽子及相关领域专家公开
2012-05-15: 细节向普通白帽子公开
2012-05-25: 细节向实习白帽子公开
2012-06-09: 细节向公众公开

简要描述:

同文件下出现多个数据库信息包括内网IP

详细说明:

http://bbs.life.sina.com.cn/info.php

漏洞证明:

Array([SCRIPT_URL] => /info.php[SCRIPT_URI] => http://bbs.life.sina.com.cn/info.php[SINASRV_GLOBAL_MEMCACHED_SERVERS] => 10.55.22.21:7601 10.55.22.115:7601 10.55.22.80:7601 10.55.22.26:7601 10.55.22.164:7601 10.55.22.197:7601 10.55.22.198:7601[SINASRV_MEMCACHED_SERVERS] => 10.55.22.21:7601 10.55.22.115:7601 10.55.22.80:7601 10.55.22.26:7601 10.55.22.164:7601 10.55.22.197:7601 10.55.22.198:7601[SINASRV_MEMCACHED_HOST] => 127.0.0.1[SINASRV_MEMCACHED_PORT] => 7600[SINASRV_DATA_DIST_SERVER] => wvfs2.mars.grid.sina.com.cn[SINASRV_DATA_DIST_PORT] => 8080[SINASRV_ZONE_IDC] => XD[SINASRV_ZONE_ISP] => CNC[SINASRV_ZONE_ID] => 010201[SINASRV_ROLE] => Web2[SINASRV_OUTIP] => 10.54.22.47[SINASRV_INTIP] => 10.55.22.47[SINASRV_TTF_PATH] => /usr/local/sinasrv2/lib/X11/fonts/TTF[SINASRV_WVFS_SERVERS] => wvfs2.mars.grid.sina.com.cn:8090 wvfs2.orion.grid.sina.com.cn:8090[SINASRV_RVFS_SERVERS] => rvfs2.mars.grid.sina.com.cn:80 rvfs2.orion.grid.sina.com.cn:80[SINASRV_CACHE_DOMAINS] => cache.mars.sina.com.cn cache.orion.sina.com.cn cache.aries.sina.com.cn cache.atlas.sina.com.cn[SQUID_PURGE_API] => http://10.44.6.245/squidclear/ http://10.29.10.251/squidclear/[SQUID_PURGE_ID] => dpool[SQUID_PURGE_PROJECT] => all[SQUID_PURGE_HOST] => www.sc.sina.com.cn[SINASRV_SQUID_PURGE_API] => http://10.44.6.245/squidclear/ http://10.29.10.251/squidclear/[SINASRV_SQUID_PURGE_ID] => dpool[SINASRV_SQUID_PURGE_PROJECT] => all[SINASRV_SQUID_PURGE_HOST] => www.sc.sina.com.cn[SINASRV_DPMAIL_HOST] => 10.44.6.21[SINASRV_DPMAIL_URL] => http://10.44.6.21/mailservice/api.php[SINASRV_COUNTER_SERVICE_MASTER] => counteri.mars.grid.sina.com.cn:8000[SINASRV_COUNTER_SERVICE_SLAVE] => 10.55.22.65:8000[SINASRV_COUNTER_SERVICE_RESTRICT] => 1[SINASRV_SIMPLEDB_SERVICE] => 1[SINASRV_SIMPLEDB_SERVICE_RESTRICT] => 1[SINASRV_VERSION] => 2[SINASRV_DATA_DIR] => /data1/www/data/bbs.life.sina.com.cn/[SINASRV_CACHE_DIR] => /data1/www/cache/bbs.life.sina.com.cn/[SINASRV_PRIVDATA_DIR] => /data1/www/privdata/bbs.life.sina.com.cn/[SINASRV_APPLOGS_DIR] => /data1/www/applogs/bbs.life.sina.com.cn/[SINASRV_DATA_URL] => http://bbs.life.sina.com.cn/data[SINASRV_CACHE_URL] => http://bbs.life.sina.com.cn/cache[SINASRV_NDATA_CACHE_URL] => http://etch.s.dpool.sina.com.cn/nd/bbslife/[SINASRV_DB_HOST] => m3380i.mars.grid.sina.com.cn[SINASRV_DB_HOST_R] => s3380i.mars.grid.sina.com.cn[SINASRV_DB_PORT] => 3380[SINASRV_DB_NAME] => bbslife[SINASRV_DB_USER] => bbslife[SINASRV_DB_PASS] => 56HdhGza1Wa[SINASRV_DB_PORT_R] => 3380[SINASRV_DB_NAME_R] => bbslife[SINASRV_DB_USER_R] => bbslife_r[SINASRV_DB_PASS_R] => d7ygDH9ydc3[SINASRV_DB2_HOST] => m3320i.mars.grid.sina.com.cn[SINASRV_DB2_HOST_R] => s3320i.mars.grid.sina.com.cn[SINASRV_DB2_PORT] => 3320[SINASRV_DB2_NAME] => life[SINASRV_DB2_USER] => life[SINASRV_DB2_PASS] => 1wSeH45tGc[SINASRV_DB2_PORT_R] => 3320[SINASRV_DB2_NAME_R] => life[SINASRV_DB2_USER_R] => life_r[SINASRV_DB2_PASS_R] => T5Gbv3edC45f[SINASRV_MEMCACHED_KEY_PREFIX] => bbs_life-[HTTP_ACCEPT] => text/html, application/xhtml+xml, */*[HTTP_ACCEPT_LANGUAGE] => zh-CN[HTTP_USER_AGENT] => Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)[HTTP_ACCEPT_ENCODING] => gzip, deflate[HTTP_HOST] => bbs.life.sina.com.cn[HTTP_CONNECTION] => Keep-Alive[HTTP_COOKIE] => U_TRS1=00000050.7457502c.4f77f60d.255c07e6; SINAGLOBAL=0000001a.9ab31b73.4f781b96.4e426534; UOR=www.baidu.com,blog,; ULV=1335207830060:1:1:1:61.135.159.228.584951335203177750:; __utma=269849203.720048980.1335203177.1335203177.1335203177.1; __utmz=269849203.1335203177.1.1.utmccn=(direct)|utmcsr=(direct)|utmcmd=(none); vjuids=267adcc02.1367281e9fd.0.d2402881e09d1; vjlast=1335207831.1335207850.10; ALF=1335515189; SUR=uid%3D2242519471%26user%3D80320524%2540qq.com%26nick%3D%25E9%2594%2599%25E8%25AF%25AFera%26email%3D%26dob%3D%26ag%3D4%26sex%3D1%26ssl%3D0; SGUP=0; U_TRS2=000000e4.2e3c6406.4f96e286.e438997c; SUS=SID-2242519471-1335292430-XD-6li9h-9d9f55fa207e6e13fb2b155b13b0d751; SUE=es%3Dc334687a1a107d7ba637fe9552e9cbd4%26ev%3Dv1%26es2%3Df5d98e2e03233701d821bdf003601451%26rs0%3D2WycZqG1u3oZKrH%252Bc59TBvw9%252BUumDly8Opz0AXkNI9pRVZ9kHRjNUVinW4uVY%252BfCDxS0xJV1FlqMlTKuYnfdmbnxP6dQIg0RoiPy3LlZymjY9NHjB84qx7aYHsYJDDl7SyDroNLIZz33KooZkEkiqlwZR5QLxN7NSkchsR2Yo94%253D%26rv%3D0; SUP=cv%3D1%26bt%3D1335292430%26et%3D1335378830%26d%3D40c3%26i%3Dd751%26us%3D1%26vf%3D0%26vt%3D0%26ac%3D4%26lt%3D7%26uid%3D2242519471%26user%3D80320524%2540qq.com%26ag%3D4%26name%3D80320524%2540qq.com%26nick%3D%25E9%2594%2599%25E8%25AF%25AFera%26sex%3D1%26ps%3D0%26email%3D%26dob%3D%26ln%3D%26os%3D%26fmp%3D%26lcp%3D2012-02-12%252016%253A31%253A47; Apache=3d328351.6651ce0.4f96f4ff.76e457e8; LIFE_USER_CITY_ID=2[PATH] => /usr/local/sinasrv2/sbin:/usr/local/sinasrv2/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin[SERVER_SIGNATURE] =>[SERVER_SOFTWARE] => Apache[SERVER_NAME] => bbs.life.sina.com.cn[SERVER_ADDR] => 10.54.22.47[SERVER_PORT] => 80[REMOTE_ADDR] => 211.136.7.250[DOCUMENT_ROOT] => /data1/www/htdocs/bbs.life.sina.com.cn/[SERVER_ADMIN] => [email protected][SCRIPT_FILENAME] => /data1/www/htdocs/bbs.life.sina.com.cn/info.php[REMOTE_PORT] => 34864[GATEWAY_INTERFACE] => CGI/1.1[SERVER_PROTOCOL] => HTTP/1.1[REQUEST_METHOD] => GET[QUERY_STRING] =>[REQUEST_URI] => /info.php[SCRIPT_NAME] => /info.php[PHP_SELF] => /info.php[REQUEST_TIME] => 1335293683)

修复方案:

你懂我的明白

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2012-04-25 09:57

厂商回复:

感谢提供

最新状态:

暂无

评价

  1. 2010-01-01 00:00 紫梦芊 白帽子 | Rank:83 漏洞数:9)

    Too many connections??