记录黑客技术中优秀的内容, 传播黑客文化,分享黑客技术精华

南北软件默认配置导致所有用户被威胁(已经证实可以控制服务器)

2015-02-21 17:40

南北软件默认配置导致所有用户被威胁【已经证实可以控制服务器】 主页修改登录密码

1.jpg

2.jpg

3.jpg



url:http://222.223.218.138:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.234.52.116:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.234.52.118:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.234.52.115:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.234.52.114:8000/manager/html

user:tomcat

pass:tomcat

url:http://117.78.2.208:8000/manager/html

user:tomcat

pass:tomcat

url:http://221.7.205.53:8000/manager/html

user:tomcat

pass:tomcat

url:http://221.7.205.54:8000/manager/html

user:tomcat

pass:tomcat

url:http://210.14.154.142:8000/manager/html

user:tomcat

pass:tomcat

url:http://123.151.19.108:8000/manager/html

user:tomcat

pass:tomcat

url:http://121.29.227.53:8000/manager/html

user:tomcat

pass:tomcat

url:http://120.0.221.6:8000/manager/html

user:tomcat

pass:tomcat

url:http://119.113.142.86:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.234.52.116:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.234.52.115:8000/manager/html

user:tomcat

pass:tomcat

url:http://60.8.196.166:8000/manager/html

user:tomcat

pass:tomcat

url:http://222.223.218.94:8000/manager/html

user:tomcat

pass:tomcat

url:http://222.222.23.140:8000/manager/html

user:tomcat

pass:tomcat

url:http://222.94.89.241:8000/manager/html

user:tomcat

pass:tomcat

url:http://222.68.180.154:8000/manager/html

user:tomcat

pass:tomcat

url:http://221.226.100.162:8000/manager/html

user:tomcat

pass:tomcat

url:http://219.148.122.196:8000/manager/html

user:tomcat

pass:tomcat

url:http://219.148.122.239:8000/manager/html

user:tomcat

pass:tomcat

url:http://218.249.195.243:8000/manager/html

user:tomcat

pass:tomcat

url:http://219.129.201.124:8000/manager/html

user:tomcat

pass:tomcat

url:http://218.90.137.138:8000/manager/html

user:tomcat

pass:tomcat

url:http://218.94.67.218:8000/manager/html

user:tomcat

pass:tomcat

url:http://218.71.138.206:8000/manager/html

user:tomcat

pass:tomcat

url:http://202.103.207.38:8000/manager/html

user:tomcat

pass:tomcat

url:http://202.103.207.39:8000/manager/html

user:tomcat

pass:tomcat

url:http://122.224.101.76:8000/manager/html

user:tomcat

pass:tomcat

url:http://119.129.151.64:8000/manager/html

user:tomcat

pass:tomcat

url:http://119.127.193.159:8000/manager/html

user:tomcat

pass:tomcat

url:http://116.247.125.130:8000/manager/html

user:tomcat

pass:tomcat

url:http://116.231.4.61:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.185.212.85:8000/manager/html

user:tomcat

pass:tomcat

url:http://61.130.101.106:8000/manager/html

user:tomcat

pass:tomcat

url:http://60.190.30.214:8000/manager/html

user:tomcat

pass:tomcat

url:http://58.49.94.100:8000/manager/html

user:tomcat

pass:tomcat

url:http://121.40.31.44:8080/manager/html

user:tomcat

pass:tomcat

url:http://121.201.5.29:8080/manager/html

user:tomcat

pass:tomcat

url:http://121.201.13.113:8080/manager/html

user:tomcat

pass:tomcat

漏洞证明:

1.jpg

2.jpg

3.jpg

4.jpg

5.jpg

6.jpg

7.jpg

8.jpg

8.jpg

9.jpg

10.jpg

11.jpg

12.jpg

13.jpg

14.jpg

15.jpg

修复方案:

默认设置 我已经不知道怎么说了 sell 多给几个乌云币 打字好累的 不知道算不算通用

知识来源: www.wooyun.org/bugs/wooyun-2015-090477

阅读:94990 | 评论:0 | 标签:无

想收藏或者和大家分享这篇好文章→复制链接地址

“南北软件默认配置导致所有用户被威胁(已经证实可以控制服务器)”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

公告

九层之台,起于累土;黑客之术,始于阅读

推广

工具

标签云

本页关键词