漏洞概要 关注数(24) 关注此漏洞
缺陷编号:wooyun-2011-02930
漏洞标题:UC用户信息泄露
相关厂商:UC Mobile
漏洞作者: xyulab
提交时间:2011-10-03 00:56
修复时间:2011-10-08 00:57
公开时间:2011-10-08 00:57
漏洞类型:重要敏感信息泄露
危害等级:低
自评Rank:4
漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞
漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]
Tags标签: 无
漏洞详情
披露状态:
2011-10-03: 细节已通知厂商并且等待厂商处理中
2011-10-08: 厂商已经主动忽略漏洞,细节向公众公开
简要描述:
UC用户信息泄露
详细说明:
http://vip.uc.cn/svc/pm/sms?uccpara=fx%3Dmob1649%60ver%3D7.8.0.87%60sn%3D1107-1034964554-ca8b8b78%60cver%3DNone%60width%3D240%60height%3D320%60ua%3DNOKIAN78%60ip%3D221.176.88.9%60nbr%3D%60fr%3Dsis%60ln%3Dzh_CN%60disp%3D%60feature_bit1%3D1144486655%60lang%3Dzh-cn%60pfid%3D28%60sms_no%3D%252B8613800898500%60ch%3Dadmin%40auto*%60mdn%3D%60prd%3DUCBrowser%60via%3DHTTP%2F1.1%2520HIHK-PS-WAP2-SV09-WAP3%2520(infoX-WISG%2C%2520Huawei%2520Technologies)%60innerip%3D221.176.88.9%60bid%3D800%60wi%3D%60li%3Dg9qKibW4p5yD14qJ*6sy4%2Fa04CxvqSR1dqA17u%2FrpHc0Ic%3D%60pver%3D3.1%60gi%3D%60btype%3DUM%60imei%3D354175026825200%60cp%3Disp%3A%25E7%25A7%25BB%25E5%258A%25A8%3Bprov%3A%25E6%25B5%25B7%25E5%258D%2597%3Bcity%3A%25E6%25B5%25B7%25E5%258F%25A3%3Bver%3A7.8.0.87%60bseq%3D11061716%60nt%3D0%60bmode%3DP3W%60imsi%3D460026089040783%60vcode%3D707d6399
漏洞证明:
修复方案:
不解释!
版权声明:转载请注明来源 xyulab@乌云
漏洞回应
厂商回应:
危害等级:无影响厂商忽略
忽略时间:2011-10-08 00:57
厂商回复:
漏洞Rank:7 (WooYun评价)
最新状态:
暂无