admin 发表于 2022-3-31 03:51:08

工控安全之某燃气系统配置不当导致多市人机操作系统和数据库可登录内网拓扑

<!--StartFragment-->
<div class="wybug_detail" style="margin:0px;padding:0px;color:#000000;font-family:Verdana, &quot;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;orphans:2;text-align:left;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;">
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                首先google搜索
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11154836d38b8a33494420a9ec71390a04b920db.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11154836d38b8a33494420a9ec71390a04b920db.png" alt="ff.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br style="margin:0px;padding:0px;" />
222.41.94.108 这个地址是上次华润服务器上发现的地址 已经关闭了<br style="margin:0px;padding:0px;" />
中燃所有系统都在用这套 只是IP地址很难搜索到<br style="margin:0px;padding:0px;" />
google只能找到几个例子<br style="margin:0px;padding:0px;" />
数据库配置不当,FTP可匿名连接下载文件<br style="margin:0px;padding:0px;" />
uid=U1000;pwd=iESDBA<br style="margin:0px;padding:0px;" />
ftp://222.132.55.50/DmsWebMain.asp 下载客户端 潍坊华润<br style="margin:0px;padding:0px;" />
客户端认证需要登录
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11160305e241ac759bf3f87d3089b8674bd500f5.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11160305e241ac759bf3f87d3089b8674bd500f5.png" alt="222.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br style="margin:0px;padding:0px;" />
比之前的漏洞直接
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11160438ab411f045026b9825a05cdf8328b58bb.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11160438ab411f045026b9825a05cdf8328b58bb.png" alt="2223.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br style="margin:0px;padding:0px;" />
----------------------------------------------------------------------<br style="margin:0px;padding:0px;" />
http://125.64.74.20:801/ 广汉中燃 下载客户端 用数据库中密码登录即可
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11160616782f513ac7dcf30d2437da5f0f15c059.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11160616782f513ac7dcf30d2437da5f0f15c059.png" alt="2223.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br style="margin:0px;padding:0px;" />
直接拿到拓扑图
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11160845fb9c61f3073e9aa91fc470e1328929fc.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11160845fb9c61f3073e9aa91fc470e1328929fc.png" alt="haha.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br style="margin:0px;padding:0px;" />
------------------------------------------------------------------------------------<br style="margin:0px;padding:0px;" />
http://222.88.118.5:801/DmsWebLogin.htm 中燃濮阳
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/1116104492de071760b3c2d39dbb2e0a8bccdcbf.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/1116104492de071760b3c2d39dbb2e0a8bccdcbf.png" alt="gggh.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br style="margin:0px;padding:0px;" />
-------------------------------------------------------------------------------------<br style="margin:0px;padding:0px;" />
http://223.100.217.158:801/ 辽阳
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11161623b2dcaaabf07a1341529ccfec8a53ecd2.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11161623b2dcaaabf07a1341529ccfec8a53ecd2.png" alt="yy.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11162159a9b4eeaede57eb2e31f9cccefdaa8544.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11162159a9b4eeaede57eb2e31f9cccefdaa8544.png" alt="tt.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11162213b7866ba9b8ac321d01fbed5a5b3a1eb3.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11162213b7866ba9b8ac321d01fbed5a5b3a1eb3.png" alt="bb.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/1116222329716017b0dc9ba3a8b07c1363f7bb1f.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/1116222329716017b0dc9ba3a8b07c1363f7bb1f.png" alt="vv.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
</div>
<h3 class="detailTitle" style="margin:15px auto 0px;padding:5px 0px 0px;font-size:14px;font-weight:normal;width:950px;text-indent:10px;word-break:break-all;overflow-wrap:break-word;border-left:5px solid #999999;color:#000000;font-family:Verdana, &quot;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;letter-spacing:normal;orphans:2;text-align:left;text-transform:none;white-space:normal;widows:2;word-spacing:0px;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;">
        漏洞证明:
</h3>
<div class="wybug_poc" style="margin:0px;padding:0px;color:#000000;font-family:Verdana, &quot;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;orphans:2;text-align:left;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;">
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/11160845fb9c61f3073e9aa91fc470e1328929fc.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/11160845fb9c61f3073e9aa91fc470e1328929fc.png" alt="haha.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
        <p class="detail usemasaic" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <a href="https://w.hundan.org/articles/attach/201508/1116222329716017b0dc9ba3a8b07c1363f7bb1f.png" target="_blank" style="margin:0px;padding:0px;color:#002E8C;text-decoration:none;"><img src="https://w.hundan.org/articles/attach/201508/1116222329716017b0dc9ba3a8b07c1363f7bb1f.png" alt="vv.PNG" width="600" onerror="javascript:errimg(this);" style="margin:0px;padding:0px;border:none;" /></a>
        </p>
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                <br />
        </p>
</div>
<h3 class="detailTitle" style="margin:15px auto 0px;padding:5px 0px 0px;font-size:14px;font-weight:normal;width:950px;text-indent:10px;word-break:break-all;overflow-wrap:break-word;border-left:5px solid #999999;color:#000000;font-family:Verdana, &quot;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;letter-spacing:normal;orphans:2;text-align:left;text-transform:none;white-space:normal;widows:2;word-spacing:0px;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;">
        修复方案:
</h3>
<div class="wybug_patch" style="margin:0px;padding:0px;color:#000000;font-family:Verdana, &quot;font-size:12px;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:400;letter-spacing:normal;orphans:2;text-align:left;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;">
        <p class="detail" style="margin:0px auto;padding:5px 12px;font-size:13px;width:870px;line-height:25px;word-break:break-all;overflow-wrap:break-word;">
                数据库默认配置<br style="margin:0px;padding:0px;" />
FTP设置密码<br style="margin:0px;padding:0px;" />
应该是通用,看审核处理咯.应该全国都在用 只要地址泄露就可登录
        </p>
</div>
<!--EndFragment-->
页: [1]
查看完整版本: 工控安全之某燃气系统配置不当导致多市人机操作系统和数据库可登录内网拓扑