【緊急】 2ちゃんねるがハッキングされる
1 :ハゼ(独):
316 :動け動けウゴウゴ2ちゃんねる:2010/07/05(月) 22:17:00 ID:pt8ldFcw0
be鯖のやばすぎる脆弱性見つけちゃったけど
# $FreeBSD: src/etc/master.passwd,v 1.25.2.6 2002/06/30 17:57:17 des Exp $
#
root:*:0:0:Charlie &:/root:/bin/csh
toor:*:0:0:Bourne-again Superuser:/root:
daemon:*:1:1:Owner of many system processes:/root:/sbin/nologin
operator:*:2:5:System &:/:/sbin/nologin
bin:*:3:7:Binaries Commands and Source:/:/sbin/nologin
tty:*:4:65533:Tty Sandbox:/:/sbin/nologin
kmem:*:5:65533:KMem Sandbox:/:/sbin/nologin
games:*:7:13:Games pseudo-user:/usr/games:/sbin/nologin
news:*:8:8:News Subsystem:/:/sbin/nologin
man:*:9:9:Mister Man Pages:/usr/share/man:/sbin/nologin
sshd:*:22:22:Secure Shell Daemon:/var/empty:/sbin/nologin
smmsp:*:25:25:Sendmail Submission User:/var/spool/clientmqueue:/sbin/nologin
mailnull:*:26:26:Sendmail Default User:/var/spool/mqueue:/sbin/nologin
miniadm:*:10:0:User &:/root:/bin/csh
miniroot:*:0:0:User &:/root:/bin/csh
mysql:*:1000:1000:mysql user:/home/mysql:/bin/sh
fblog:*:1002:1002:fblog:/home/fblog:/bin/sh
ch2be:*:1003:1003:ch2be:/home/ch2be:/bin/tcsh
http://be.2ch.net:10000/
ここにあったツール実行しただけ
http://under.up.bit.ly/bUdIof#attack.zip
|
|
|