当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2014-086547

漏洞标题:纷享销客openssl heartbleed(造成敏感信息泄漏)

相关厂商:纷享销客

漏洞作者: 老妖

提交时间:2014-12-09 17:54

修复时间:2015-01-23 17:56

公开时间:2015-01-23 17:56

漏洞类型:敏感信息泄露

危害等级:中

自评Rank:7

漏洞状态:未联系到厂商或者厂商积极忽略

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2014-12-09: 积极联系厂商并且等待厂商认领中,细节不对外公开
2015-01-23: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

纷享销客openssl heartbleed,造成敏感信息泄漏

详细说明:

http://www.fxiaoke.com
openssl heartbleed 造成cookie泄漏

漏洞证明:

抓到cookie导入后,可以访问内部数据,没有深入
下面的cookie应该很快会过期,所以我没有打码
.ASPXAUTHFs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
http://www.fxiaoke.com/P/GlobalInfo/GetRemindGlobalInfo?feedID=0&_vn=35
{"value":{"remindInfos":[{"value":3,"value1":0},{"value":4,"value1":0},{"value":5,"value1":0},{"value":6,"value1":0},{"value":7,"value1":0},{"value":8,"value1":0},{"value":9,"value1":0},{"value":10,"value1":0},{"value":11,"value1":0},{"value":12,"value1":0},{"value":13,"value1":0},{"value":14,"value1":0},{"value":15,"value1":0},{"value":16,"value1":0},{"value":17,"value1":0},{"value":18,"value1":0},{"value":22,"value1":0},{"value":23,"value1":0},{"value":24,"value1":0},{"value":25,"value1":0},{"value":26,"value1":0},{"value":27,"value1":0},{"value":28,"value1":0},{"value":29,"value1":0},{"value":30,"value1":0},{"value":31,"value1":0},{"value":32,"value1":0},{"value":33,"value1":0},{"value":34,"value1":0},{"value":35,"value1":0},{"value":36,"value1":0},{"value":37,"value1":0},{"value":38,"value1":0},{"value":39,"value1":0},{"value":40,"value1":0},{"value":41,"value1":0},{"value":42,"value1":0},{"value":43,"value1":0},{"value":44,"value1":0}],"overTimeFeedWorkCount":0,"planCount":0,"workCount":0,"approveCount":0,"smsAmount":{"value":100,"value1":0},"storageSpace":{"value":10240,"value1":11},"workExecutingCount":0,"workCommentingCount":0,"version":"1.0.0.32","empCountOfNotInCircle":0,"exMailNewCount":0,"shortMessageCount":0,"shortMessage":{"onlineEmployeeIDs":[14],"sessions":[],"newMessages":[],"mobileOnlineEmployeeIDs":[]},"currentEmployeeID":14,"currentEnterpriseAccount":"mxqysc","replyCountToMe":0,"feedCountAtMe":0,"feedCountFollowedByMe":0,"replyCountFollowedByMe":0,"newFeedCount":0,"followedCustomerUnreadCount":0,"myCustomerUnreadCount":0},"success":true,"isAuthorized":true,"statusCode":0,"serviceTime":1418115623,"isCancellation":false}
http://www.fxiaoke.com/P/GlobalInfo/GetRemindGlobalInfo?feedID=10&_vn=35
{"value":{"remindInfos":[{"value":3,"value1":0},{"value":4,"value1":0},{"value":5,"value1":0},{"value":6,"value1":0},{"value":7,"value1":0},{"value":8,"value1":0},{"value":9,"value1":0},{"value":10,"value1":0},{"value":11,"value1":0},{"value":12,"value1":0},{"value":13,"value1":0},{"value":14,"value1":0},{"value":15,"value1":0},{"value":16,"value1":0},{"value":17,"value1":0},{"value":18,"value1":0},{"value":22,"value1":0},{"value":23,"value1":0},{"value":24,"value1":0},{"value":25,"value1":0},{"value":26,"value1":0},{"value":27,"value1":0},{"value":28,"value1":0},{"value":29,"value1":0},{"value":30,"value1":0},{"value":31,"value1":0},{"value":32,"value1":0},{"value":33,"value1":0},{"value":34,"value1":0},{"value":35,"value1":0},{"value":36,"value1":0},{"value":37,"value1":0},{"value":38,"value1":0},{"value":39,"value1":0},{"value":40,"value1":0},{"value":41,"value1":0},{"value":42,"value1":0},{"value":43,"value1":0},{"value":44,"value1":0}],"overTimeFeedWorkCount":0,"planCount":0,"workCount":0,"approveCount":0,"smsAmount":{"value":100,"value1":0},"storageSpace":{"value":10240,"value1":11},"workExecutingCount":0,"workCommentingCount":0,"version":"1.0.0.32","empCountOfNotInCircle":0,"exMailNewCount":0,"shortMessageCount":0,"shortMessage":{"onlineEmployeeIDs":[14],"sessions":[],"newMessages":[],"mobileOnlineEmployeeIDs":[]},"currentEmployeeID":14,"currentEnterpriseAccount":"mxqysc","replyCountToMe":0,"feedCountAtMe":0,"feedCountFollowedByMe":0,"replyCountFollowedByMe":0,"newFeedCount":322,"followedCustomerUnreadCount":0,"myCustomerUnreadCount":0},"success":true,"isAuthorized":true,"statusCode":0,"serviceTime":1418115897,"isCancellation":false}
dump出来的数据
26 00f0: 20 55 3B 20 41 6E 64 72 6F 69 64 20 34 2E 31 2E U; Android 4.1.
27 0100: 31 3B 20 7A 68 2D 63 6E 3B 20 48 55 41 57 45 49 1; zh-cn; HUAWEI
28 0110: 20 43 38 38 31 33 20 42 75 69 6C 64 2F 48 75 61 C8813 Build/Hua
29 0120: 77 65 69 43 38 38 31 33 29 20 41 70 70 6C 65 57 weiC8813) AppleW
30 0130: 65 62 4B 69 74 2F 35 33 34 2E 33 30 20 28 4B 48 ebKit/534.30 (KH
31 0140: 54 4D 4C 2C 20 6C 69 6B 65 20 47 65 63 6B 6F 29 TML, like Gecko)
32 0150: 20 56 65 72 73 69 6F 6E 2F 34 2E 30 20 4D 6F 62 Version/4.0 Mob
33 0160: 69 6C 65 20 53 61 66 61 72 69 2F 35 33 34 2E 33 ile Safari/534.3
34 0170: 30 0D 0A 48 6F 73 74 3A 20 77 77 77 2E 66 78 69 0..Host: www.fxi
35 0180: 61 6F 6B 65 2E 63 6F 6D 0D 0A 43 6F 6E 6E 65 63 aoke.com..Connec
36 0190: 74 69 6F 6E 3A 20 4B 65 65 70 2D 41 6C 69 76 65 tion: Keep-Alive
37 01a0: 0D 0A 43 6F 6F 6B 69 65 3A 20 2E 41 53 50 58 41 ..Cookie: .ASPXA
38 01b0: 55 54 48 46 73 3D 38 33 35 43 42 33 30 37 45 38 UTHFs=835CB307E8
39 01c0: 35 44 37 32 46 30 41 31 46 39 39 30 43 37 36 37 5D72F0A1F990C767
40 01d0: 38 34 39 30 30 35 35 33 30 43 33 38 33 34 37 34 849005530C383474
41 01e0: 33 37 32 45 39 36 34 45 42 38 43 30 30 44 35 31 372E964EB8C00D51
42 01f0: 46 34 33 32 36 42 36 43 32 34 35 30 30 36 38 31 F4326B6C24500681
43 0200: 39 45 38 32 38 41 38 39 36 32 45 30 41 35 45 31 9E828A8962E0A5E1
44 0210: 41 46 30 43 33 34 43 30 34 42 39 46 30 41 33 37 AF0C34C04B9F0A37
45 0220: 32 33 42 32 37 30 32 39 35 46 39 37 30 33 30 43 23B270295F97030C
46 0230: 44 30 35 36 34 36 33 41 43 32 36 46 30 41 45 44 D056463AC26F0AED
47 0240: 30 43 34 45 32 42 38 39 39 37 32 42 36 31 39 43 0C4E2B89972B619C
48 0250: 42 42 32 33 41 32 46 35 31 30 38 43 36 37 30 37 BB23A2F5108C6707
49 0260: 36 32 42 36 37 45 41 38 39 43 31 37 35 38 34 46 62B67EA89C17584F
50 0270: 31 46 36 30 34 39 43 46 45 39 46 37 31 34 37 42 1F6049CFE9F7147B
51 0280: 42 42 30 45 44 36 33 37 43 41 32 36 31 43 37 31 BB0ED637CA261C71
52 0290: 44 35 35 37 33 45 35 46 37 45 30 44 42 37 42 43 D5573E5F7E0DB7BC
53 02a0: 37 39 37 46 43 34 30 35 42 41 34 43 35 32 41 37 797FC405BA4C52A7
54 02b0: 35 31 46 37 30 33 42 41 36 36 34 36 31 43 33 43 51F703BA66461C3C
55 02c0: 31 46 39 39 32 45 37 41 44 32 36 32 36 46 46 35 1F992E7AD2626FF5
56 02d0: 45 43 31 42 31 44 46 33 44 37 39 38 45 38 41 42 EC1B1DF3D798E8AB
57 02e0: 32 42 38 31 30 38 39 38 32 42 45 44 32 41 43 32 2B8108982BED2AC2
58 02f0: 34 46 35 35 45 42 45 43 33 34 37 37 42 44 33 44 4F55EBEC3477BD3D
59 0300: 37 35 41 34 35 42 43 30 41 37 39 30 39 44 44 35 75A45BC0A7909DD5
60 0310: 43 36 46 31 34 33 46 33 31 32 32 33 46 31 37 35 C6F143F31223F175
61 0320: 34 46 41 42 44 42 43 36 31 33 31 39 32 46 39 41 4FABDBC613192F9A
62 0330: 43 43 39 39 39 31 44 34 35 35 39 35 45 38 34 46 CC9991D45595E84F
63 0340: 36 33 39 34 39 36 45 44 33 37 35 31 41 41 41 38 639496ED3751AAA8
64 0350: 41 44 38 31 39 41 36 46 35 35 35 43 38 39 36 44 AD819A6F555C896D
65 0360: 38 36 45 43 30 39 38 39 41 46 44 45 38 46 33 43 86EC0989AFDE8F3C
66 0370: 32 33 45 36 46 41 36 33 43 35 35 34 31 41 41 44 23E6FA63C5541AAD
67 0380: 37 45 30 45 42 41 44 30 34 37 33 32 32 37 32 32 7E0EBAD047322722
68 0390: 34 30 31 31 35 38 45 33 46 42 30 32 43 43 31 43 401158E3FB02CC1C
69 03a0: 38 30 46 33 44 39 31 44 30 45 33 41 32 33 31 39 80F3D91D0E3A2319
70 03b0: 30 36 31 37 43 32 36 30 44 30 39 30 41 34 41 35 0617C260D090A4A5
71 03c0: 33 44 35 45 45 34 46 34 37 41 36 32 44 46 32 36 3D5EE4F47A62DF26
72 03d0: 46 31 45 36 37 38 44 31 32 32 39 39 30 37 33 31 F1E678D122990731
73 03e0: 42 45 35 36 32 43 42 36 44 44 32 31 34 43 0D 0A BE562CB6DD214C..
74 03f0: 43 6F 6F 6B 69 65 32 3A 20 24 56 65 72 73 69 6F Cookie2: $Versio
75 0400: 6E 3D 31 0D 0A 0D 0A DB FD A8 C9 DD B2 CC 5E E4 n=1...........^.

修复方案:

版权声明:转载请注明来源 老妖@乌云


漏洞回应

厂商回应:

未能联系到厂商或者厂商积极拒绝