频道栏目
首页 > 安全 > 网站安全 > 正文

大麦网一处java反序列化命令执行/可探测内网/涉及多个内网数据库配置信息

2016-07-15 09:15:25           
收藏   我要投稿

java反序列化

http://122.113.39.236:8090/

jboss java反序列化

 

111.png

 

 

111.png

 

好多内网的数据库连接信息

mask 区域

*****uot; encoding=&q*****

*****oot*****

*****="192.168.88.51:112*****

*****urce=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****uzrce=192.168.66.22\SQL2008,14330;persist security info=F*****

*****ource=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****iang_pwd; database=dianjiang; pooling=true;charset=utf8;Min*****

*****ource=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****rce=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****ce=192.168.66.22\SQL2008,14330;persist security info=F*****

*****ource=192.168.66.22\SQL2008,14330;persist security info*****

*****rce=192.168.66.22\SQL2008,14330;persist security info=Fa*****

***** value=""*****

*****e=192.168.66.22\SQL2008,14330;persist security info=False*****

*****quot;192.168.66.12:2701*****

*****quot;192.168.66.12:2701*****

*****rce=192.168.3.32\SQL2008;persist security info=False;init*****

*****=192.168.66.22\SQL2008,14330;persist security info=False;in*****

*****urce=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****ce=192.168.66.22\SQL2008,14330;persist security info=Fals*****

*****e=192.168.66.22\SQL2008,14330;persist security info=False;in*****

*****rce=192.168.66.22\SQL2008,14330;persist security info=False;i*****

*****ource=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****=192.168.66.22\SQL2008,14330;persist security info=Fals*****

***** source=192.168.66.22\SQL2008,14330;persist security info=F*****

*****rce=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****uot; value="&qu*****

*****ource=192.168.66.22\SQL2008,14330;persist security info=Fals*****

*****urce=192.168.66.22\SQL2008,14330;persist security info=False;*****

*****urce=192.168.66.22\SQL2008,14330;persist security info=*****

***** source=192.168.3.32\SQL2008;persist security info=False;in*****

*****ource=192.168.66.22\SQL2008,14330;persist security info=False*****

***** source=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****=192.168.66.22\SQL2008,14330;persist security info=False;init*****

*****=192.168.66.22\SQL2008,14330;persist security info=False;in*****

*****e=192.168.66.22\SQL2008,14330;persist security info=False;in*****

*****urce=192.168.66.22\SQL2008,14330;persist security info=Fals*****

*****ce=192.168.66.22\SQL2008,14330;persist security info=False;*****

*****ource=192.168.3.32\SQL2008;persist security info=False;in*****

*****a source=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****source=192.168.66.22\SQL2008,14330;persist security info=Fals*****

*****a source=192.168.3.32\SQL2008;persist security info=False;i*****

*****ce=192.168.66.22\SQL2008,14330;persist security info=False*****

*****192.168.66.22\SQL2008,14330;persist security info=Fal*****

***** source=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****rce=192.168.66.22\SQL2008,14330;persist security info=F*****

*****22\SQL2008,14330;persist security info=False;initial catalog=Damai_BU*****

*****ourcez=192.168.66.22\SQL2008,14330;persist security info=False*****

***** source=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****ource=192.168.66.22\SQL2008,14330;persist security info=Fals*****

***** source=192.168.3.32\SQL2008;persist security info=False;i*****

*****ce=192.168.66.22\READONLY,1433;persist security info=False;in*****

*****urce=192.168.66.22\READONLY,1433;persist security info=False;i*****

*****ce=192.168.66.22\READONLY,1433;persist security info=False;in*****

*****ource=192.168.66.22\READONLY,1433;persist security info=Fals*****

*****ource=192.168.66.22\READONLY,1433;persist security info=Fals*****

*****urce=192.168.66.22\READONLY,1433;persist security info=False;*****

*****192.168.66.22\SQL2008,14330;persist security info=Fals*****

*****rce=192.168.66.22\SQL2008,14330;persist security info=Fa*****

*****e=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****e=192.168.66.22\SQL2008,14330;persist security info=Fal*****

*****t; value="30000&*****

*****.12;Database=notify;Uid=notify;Pwd=no*****

***** id=message_center; password=message_center_pwd;*****

*****3read;data source=192.168.66.22\READONLY,1433;persist security *****

*****t; password=mysql; database=ball; pooling=false;c*****

*****enew_3_pwd; database=movienew_3; pooling=true*****

*****ew_3_pwd; database=movienew_3; pooling=true;ch*****

***** database=super_ticket_4.0; pooling=true;charset=utf8;Min Pool Size=0;*****

*****ot&g*****

*****===========*****

 

111.png

 

还是内网 net view

服务器名称 注释

-------------------------------------------------------------------------------

\\DB_CENTER

\\DB_DATAMARTS

\\DM-B2-1

\\DM-JR-IE8 z

\\OXO-05373CE6C0A

\\OXO-5B8924BBDD3

\\OXO-94CE030D68F

\\OXO-A33B4DF673D

\\OXO-DE019604DBA

\\TEST-8846

\\TEST-B4

\\TEST-B5

\\WANGXIUL-25C914

\\WIN-5PVMQ3EBE1A

\\WUXIAN-TEST

命令成功完成。

=================================================================

 

111.png

 

system权限 可以找个目录getshell 然后把3389转发出来

 

111.png

 

解决方案:

jboss java反序列化

上一篇:微糖主站一处SQL注入(涉及860W+患者/46W+医生信息/12W+订单数据)
下一篇:医脉通某站getshell(涉及数据库信息/内部服务器配置)
相关文章
图文推荐

关于我们 | 联系我们 | 广告服务 | 投资合作 | 版权申明 | 在线帮助 | 网站地图 | 作品发布 | Vip技术培训 | 举报中心

版权所有: 红黑联盟--致力于做实用的IT技术学习网站