当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0145137

漏洞标题:福建住房公积金boolean盲注漏洞

相关厂商:cncert国家互联网应急中心

漏洞作者: 路人甲

提交时间:2015-10-07 10:30

修复时间:2015-11-26 17:42

公开时间:2015-11-26 17:42

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:15

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-10-07: 细节已通知厂商并且等待厂商处理中
2015-10-12: 厂商已经确认,细节仅向厂商公开
2015-10-22: 细节向核心白帽子及相关领域专家公开
2015-11-01: 细节向普通白帽子公开
2015-11-11: 细节向实习白帽子公开
2015-11-26: 细节向公众公开

简要描述:

/**/

详细说明:

POST /LoanableEstate.aspx?class=9b96343b-0051-4bc1-a63c-3dbf6da619a3 HTTP/1.1
Host: **.**.**.**
User-Agent: Mozilla/5.0 (Windows NT 6.2; rv:40.0) Gecko/20100101 Firefox/40.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Referer: http://**.**.**.**/LoanableEstate.aspx?class=9b96343b-0051-4bc1-a63c-3dbf6da619a3
Cookie: ASP.NET_SessionId=ag1rnyjqlwapx05504c0ap55
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 2126
__VIEWSTATE=%2FwEPDwUKLTE2MzMxNTcyNw8WAh4MRGVmYXVsdEltYWdlBQ0vaW1hZ2VzLzMuanBnFgICAw9kFgwCAQ9kFgRmDxYCHgtfIUl0ZW1Db3VudGZkAgEPFgIfAQIHFg4CAQ9kFgJmDxUCFC9aaGVuZ1d1R29uZ0thaS5hc3B4DOaUv%2BWKoeWFrOW8gGQCAg9kFgJmDxUCPS9MYXdHdWlkZU1haW4uYXNweD9jbGFzcz1jOTU3Njk1Yi1mMGM1LTQ5ZWMtYTEyOS1hZmZmN2ZiNTRlN2YM5Yqe5LqL5oyH5Y2XZAIDD2QWAmYPFQI%2FL05ld3NOb3JtYWxMaXN0LmFzcHg%2FY2xhc3M9YTYzNGIzMGUtYmI0My00Y2Y1LWEzODQtZmRmMWJjNTkzNjY5DOWFmuW7uuW3peS9nGQCBA9kFgJmDxUCPy9Mb2FuYWJsZUVzdGF0ZS5hc3B4P2NsYXNzPTliOTYzNDNiLTAwNTEtNGJjMS1hNjNjLTNkYmY2ZGE2MTlhMwzlj6%2FotLfmpbznm5hkAgUPZBYCZg8VAhIvRG93bkxvYWRMaXN0LmFzcHgM5LiL6L295Lit5b%2BDZAIGD2QWAmYPFQJDL05ld3NJbWFnZUJvbGNrTGlzdC5hc3B4P2NsYXNzPWM0YzdhMDhhLTVkYmQtNDc5MS04OGVlLWQ4MmFmNGNlNGY4YQzlt6XkvZzliqjmgIFkAgcPZBYCZg8VAgwvU2VhcmNoLmFzcHgM6auY57qn5qOA57SiZAIFDxBkDxYFZgIBAgICAwIEFgUQBQ0tLeivt%2BmAieaLqS0tZWcQBQnllYblk4HmiL8FATFnEAUP57uP5rWO6YCC55So5oi%2FBQEyZxAFCeS6jOaJi%2BaIvwUBM2cQBQzlhbbku5bnsbvlnosFATRnZGQCCw8WAh8BAgcWDgIBD2QWBmYPFQEcTmV3c1ZpZXcuYXNweD9Ib3VzZUNvZGU9MTAwM2QCAQ8PFgIeBFRleHRlZGQCAg8VAh7pmLPlhYnln47lsbHkuI7mtbfvvIjkuIDmnJ%2FvvIkKMjAxNS0wOS0yNGQCAg9kFgZmDxUBG05ld3NWaWV3LmFzcHg%2FSG91c2VDb2RlPTk5OGQCAQ8PFgIfAmVkZAICDxUCD%2BmXvea4heeQhuaDs%2Ba5vgoyMDE1LTA5LTIyZAIDD2QWBmYPFQEbTmV3c1ZpZXcuYXNweD9Ib3VzZUNvZGU9OTk5ZAIBDw8WAh8CZWRkAgIPFQI05Lic5LqM546v5rOw56a%2B5Z%2BO5biC5bm%2F5Zy65Lic5Yy6RjA25Zyw5Z2X77yIROWMuu%2B8iQoyMDE1LTA5LTIxZAIED2QWBmYPFQEcTmV3c1ZpZXcuYXNweD9Ib3VzZUNvZGU9MTAwMGQCAQ8PFgIfAmVkZAICDxUCFee%2BpOWNh%2Baxn%2BWxseWfjuS6jOacnwoyMDE1LTA5LTIxZAIFD2QWBmYPFQEcTmV3c1ZpZXcuYXNweD9Ib3VzZUNvZGU9MTAwMWQCAQ8PFgIfAmVkZAICDxUCHOmYs%2BWFieeOr%2BermeaWsOWfjjHvvIPlnLDlnZcKMjAxNS0wOS0yMWQCBg9kFgZmDxUBHE5ld3NWaWV3LmFzcHg%2FSG91c2VDb2RlPTEwMDJkAgEPDxYCHwJlZGQCAg8VAhLpmLPlhYnnjq%2Fnq5nmlrDln44KMjAxNS0wOS0yMWQCBw9kFgZmDxUBG05ld3NWaWV3LmFzcHg%2FSG91c2VDb2RlPTk5NWQCAQ8PFgIfAmVkZAICDxUCG%2BW7uuWPkeWMl%2Ba5luiLke%2B8iOS4ieWMuu%2B8iQoyMDE1LTA5LTExZAINDxYCHwFmZAIPDw8WAh4OUGFnZXJSZWNvcmROdW1mZGQCEQ9kFgICAQ8PFgIfAgUIMjI2MTEzODVkZGSLbcG%2BugrbZNZK2BVHc%2B4%2BmvOmuA%3D%3D&__VIEWSTATEGENERATOR=98829285&__EVENTTARGET=&__EVENTARGUMENT=&txtKey=a&ddlType=1&btnSearch=%E6%9F%A5%E6%89%BE


参数 txtKey

1.png

漏洞证明:

2.png


3.png

修复方案:

你懂得

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2015-10-12 17:41

厂商回复:

CNVD确认并复现所述漏洞情况,已经转由CNCERT下发给福建分中心,由福建分中心后续协调网站管理单位处置。

最新状态:

暂无