Vulnerability Detail Report
Vulnerability Overview
- ZDID: ZD-2019-00459
- 發信 Vendor: 教育部
- Title: 教育部所屬網站屬十臺Moxa NPort 最高權限使用者密碼洩漏等情
- Introduction: 最高權限使用者密碼外洩
處理狀態
目前狀態
公開
Last Update : 2019/08/06
-
新提交
-
已審核
-
已通報
-
已修補
-
未複測
-
公開
處理歷程
- 2019/05/28 22:20:32 : 新提交 (由 phantom 更新此狀態)
- 2019/05/29 00:11:09 : 審核完成 (由 HITCON ZeroDay 服務團隊 更新此狀態)
- 2019/05/30 19:14:25 : 修補中 (由 HITCON ZeroDay 服務團隊 更新此狀態)
- 2019/05/30 19:14:26 : 修補中 (由 HITCON ZeroDay 服務團隊 更新此狀態)
- 2019/07/28 03:00:03 : 公開 (由 HITCON ZeroDay 平台自動更新)
- 2019/07/29 15:43:55 : 已修補 (由 HITCON ZeroDay 服務團隊 更新此狀態)
- 2019/08/06 03:00:05 : 公開 (由 HITCON ZeroDay 平台自動更新)
詳細資料
- ZDID:ZD-2019-00459
- 通報者:phantom (phantom)
- 風險:中
- 類型:資訊洩漏 (Information Leakage)
參考資料
攻擊者可利用洩漏資訊進行下一步攻擊行為。
OWASP 漏洞說明 (Top 10 2017 - A3 Sensitive Data Exposure)
https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure
CWE-200 漏洞說明
https://cwe.mitre.org/data/definitions/200.html
OWASP 漏洞說明 (Top 10 2017 - A3 Sensitive Data Exposure)
https://www.owasp.org/index.php/Top_10-2017_A3-Sensitive_Data_Exposure
CWE-200 漏洞說明
https://cwe.mitre.org/data/definitions/200.html
(本欄位資訊由系統根據漏洞類別自動產生,做為漏洞參考資料。)
相關網址
IP Port PW
163.13.112.52 23 28903514
163.13.172.1 23 28903514
140.129.32.72 80 218229287538
140.112.253.174 80 28903514
140.112.78.4 23 Paswd017
140.129.32.74 80 218229287538
140.116.235.65 23 admin31380
140.116.235.66 23 admin31380
163.13.149.1 23 28903514
210.60.221.238 23 28903514
140.137.32.14 80 es&e3114
140.116.12.220 23 fl52254
163.17.226.149 23 world
163.13.242.238 23 28903514
210.240.134.136 23 Saho07
140.129.23.102 80 Moxa12345678
140.129.23.103 23 Moxa12345678
140.129.23.104 80 Moxa12345678
140.112.69.8 80 OceanPass
140.129.26.5 23 ttu+3610
163.13.116.221 23 28903514
140.129.10.239 80 218229287538
163.15.183.96 80 SAHO07
163.15.183.95 80 SAHO07
163.13.143.239 23 28903514
140.112.79.211 23 Password
163.13.152.24 23 28903514
140.129.1.250 23 kirk5257
140.112.60.125 23 Paswd011
210.240.134.135 80 Saho07
140.115.48.217 80 ncu
163.13.223.35 23 28903514
140.129.32.65 80 03701202
163.13.164.19 23 28903514
140.121.130.162 80 mil7208
140.112.67.194 23 cook
163.13.42.47 23 entek
163.13.142.130 23 28903514
140.112.185.243 23 Paswd008
163.13.132.206 23 28903514
140.119.107.185 23 27580199
163.13.22.99 80 28903514
163.13.116.231 23 28903514
163.13.119.63 23 28903514
163.13.21.37 80 28903514
140.112.33.36 80 Paswd010
163.13.180.229 23 28903514
163.18.94.91 80 nkfust1300
163.13.148.2 23 28903514
203.64.42.189 23 19761213
163.13.148.4 23 28903514
140.119.62.249 23 ken771123
140.129.32.61 80 03701202
163.13.113.251 23 28903514
140.129.41.142 80 Moxa12345678
140.129.11.3 80 Moxa12345678
163.13.163.9 23 28903514
140.112.50.248 80 ntuogacm
163.13.223.33 23 entek
203.71.143.177 80 clock_ad789
140.116.235.141 23 admin31380
140.129.32.71 80 218229287538
140.129.32.73 23 218229287538
140.112.72.13 80 Paswd006
163.13.136.187 23 entek
140.112.52.12 80 Password
163.13.182.239 23 28903514
163.13.148.5 23 28903514
140.112.22.6 23 Paswd003
140.112.154.70 80 Password
163.13.119.45 23 28903514
210.71.75.161 80 goldcom
140.129.23.101 80 Moxa12345678
140.112.44.137 23 Password
140.115.35.35 80 sw275
163.13.45.48 23 28903514
140.116.235.129 23 admin31380
163.13.112.52 23 28903514
163.13.172.1 23 28903514
140.129.32.72 80 218229287538
140.112.253.174 80 28903514
140.112.78.4 23 Paswd017
140.129.32.74 80 218229287538
140.116.235.65 23 admin31380
140.116.235.66 23 admin31380
163.13.149.1 23 28903514
210.60.221.238 23 28903514
140.137.32.14 80 es&e3114
140.116.12.220 23 fl52254
163.17.226.149 23 world
163.13.242.238 23 28903514
210.240.134.136 23 Saho07
140.129.23.102 80 Moxa12345678
140.129.23.103 23 Moxa12345678
140.129.23.104 80 Moxa12345678
140.112.69.8 80 OceanPass
140.129.26.5 23 ttu+3610
163.13.116.221 23 28903514
140.129.10.239 80 218229287538
163.15.183.96 80 SAHO07
163.15.183.95 80 SAHO07
163.13.143.239 23 28903514
140.112.79.211 23 Password
163.13.152.24 23 28903514
140.129.1.250 23 kirk5257
140.112.60.125 23 Paswd011
210.240.134.135 80 Saho07
140.115.48.217 80 ncu
163.13.223.35 23 28903514
140.129.32.65 80 03701202
163.13.164.19 23 28903514
140.121.130.162 80 mil7208
140.112.67.194 23 cook
163.13.42.47 23 entek
163.13.142.130 23 28903514
140.112.185.243 23 Paswd008
163.13.132.206 23 28903514
140.119.107.185 23 27580199
163.13.22.99 80 28903514
163.13.116.231 23 28903514
163.13.119.63 23 28903514
163.13.21.37 80 28903514
140.112.33.36 80 Paswd010
163.13.180.229 23 28903514
163.18.94.91 80 nkfust1300
163.13.148.2 23 28903514
203.64.42.189 23 19761213
163.13.148.4 23 28903514
140.119.62.249 23 ken771123
140.129.32.61 80 03701202
163.13.113.251 23 28903514
140.129.41.142 80 Moxa12345678
140.129.11.3 80 Moxa12345678
163.13.163.9 23 28903514
140.112.50.248 80 ntuogacm
163.13.223.33 23 entek
203.71.143.177 80 clock_ad789
140.116.235.141 23 admin31380
140.129.32.71 80 218229287538
140.129.32.73 23 218229287538
140.112.72.13 80 Paswd006
163.13.136.187 23 entek
140.112.52.12 80 Password
163.13.182.239 23 28903514
163.13.148.5 23 28903514
140.112.22.6 23 Paswd003
140.112.154.70 80 Password
163.13.119.45 23 28903514
210.71.75.161 80 goldcom
140.129.23.101 80 Moxa12345678
140.112.44.137 23 Password
140.115.35.35 80 sw275
163.13.45.48 23 28903514
140.116.235.129 23 admin31380
敘述
教育部所屬網站數十臺的Moxa NPort串列設備伺服器存在CVE-2016-9361漏洞,該漏洞係憑證管理不當,使未經身份驗證的駭客可透過漏洞取得最高權限管理者密碼,經美國國家標準技術研究所(NIST)的國家弱點資料庫(NVD)所發佈的資料可知道,該漏洞CVSS v3.0高達9.8分(滿分:10分),屬於嚴重型的漏洞。
擷圖
留言討論
登入後留言
聯絡組織
發送私人訊息
您也可以透過私人訊息的方式與組織聯繫,討論有關於這個漏洞的相關資訊。