当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0141206

漏洞标题:某审批系统一处通用SQL注入漏洞

相关厂商:cncert国家互联网应急中心

漏洞作者: 路人甲

提交时间:2015-09-18 14:39

修复时间:2015-12-19 19:46

公开时间:2015-12-19 19:46

漏洞类型:SQL注射漏洞

危害等级:高

自评Rank:12

漏洞状态:已交由第三方合作机构(cncert国家互联网应急中心)处理

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-09-18: 细节已通知厂商并且等待厂商处理中
2015-09-20: 厂商已经确认,细节仅向厂商公开
2015-09-23: 细节向第三方安全合作伙伴开放(绿盟科技唐朝安全巡航
2015-11-14: 细节向核心白帽子及相关领域专家公开
2015-11-24: 细节向普通白帽子公开
2015-12-04: 细节向实习白帽子公开
2015-12-19: 细节向公众公开

简要描述:

详细说明:

注入文件:xzsp/gxxt/tjfx/list4xq.aspx (iptEndAt存在注入)

漏洞证明:

案例
日照市网上审批系统
http://**.**.**.**/workplate/
保定市网上审批系统
http://**.**.**.**/workplate/
磁县网上审批系统
http://**.**.**.**/workplate/
魏县网上审批系统
http://**.**.**.**/workplate/
邯郸县网上审批系统
http://**.**.**.**/workplate/
南郊区网上审批系统
http://**.**.**.**:8001/workplate/
城区网上审批系统
**.**.**.**:81/workplate/
左云县网上审批系统
**.**.**.**:88/workplate/
天镇县网上审批系统
**.**.**.**:83/workplate/
广灵县网上审批系统
**.**.**.**:83/workplate/
新荣区网上审批系统
**.**.**.**:82/workplate/
矿区网上审批系统
**.**.**.**:82/workplate/
涉县网上审批系统
http://**.**.**.**/workplate/
临漳县网上审批系统
http://**.**.**.**/workplate/
安新县网上审批系统
http://**.**.**.**/workplate/
高阳县网上审批系统
http://**.**.**.**/workplate/
长子县网上审批系统
**.**.**.**:81/workplate/
屯留县网上审批系统
**.**.**.**/workplate/
浑源县网上审批系统
**.**.**.**:85/workplate/
邱县网上审批系统
**.**.**.**/workplate/
南郊区网上审批系统
http://**.**.**.**:8001/workplate/
大同县网上审批系统
**.**.**.**:82/workplate/
我就拿一个测试

POST http://**.**.**.**/workplate/xzsp/gxxt/tjfx/list4xq.aspx HTTP/1.1
Pragma: no-cache
Cache-Control: no-cache
Referer: http://**.**.**.**/workplate/xzsp/gxxt/tjfx/list4xq.aspx
Content-Length: 28827
Content-Type: application/x-www-form-urlencoded
Acunetix-Aspect: enabled
Acunetix-Aspect-Password: 082119f75623eb7abd7bf357698ff66c
Acunetix-Aspect-Queries: filelist;aspectalerts
Cookie: ASP.NET_SessionId=54cxpg2gu01hbf45mnveqci3; safedog-flow-
item=E8F815AAAF567715717EE84DA71CB178
Host: **.**.**.**
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like 
Gecko) Chrome/41.0.2228.0 Safari/537.21
Accept: */*
Button2=%e5%af%bc%e5%87%ba&btnGen=%e6%9f%a5%e8%af
%a2&ddlBaseOrg=181&iptEndAt=*&iptStartAt=&__EVENTARGUMENT=&__EVENTTARGET=&__EVEN
TVALIDATION=/wEWSALt0Yz7CwKm1eh/AvKBgQgC2/C
%2bxAgCj4i/5QECj4jf5QEClJ/9zgsCsfaS0A0C3sywJQL7o9aOCgKAuvSTDAKtkerkBgKn0sgPAo
%2bI0%2bUBApSf8c4LArH2ltANAvujqo4KAoC6yJMMAq2R7uQGApr7rroOAuOxmZAPAoiIv
%2bUBApWf3c4LArL28tMNAt/MkCUC5KO2jgoCrpHK5AYCm/uKug4CoNKoDwLjsZ2QDwKIiLPlAQKVn9H
OCwKy9vbTDQLfzJQlAuSjio4KAoG6qJMMApv7jroOAuOxkZAPAoiIt
%2bUBApWf1c4LArL2ytMNAt/M6CQCgbqskwwCrpHC5AYCm/uCug4CoNKgDwLjsZWQDwKIiIvlAQKVn6n
OCwLko4KOCgKBuqCTDALjsemTDwKIiI/lAQKVn63OCwKBuqSTDAKukdrkBgKLk
%2bG0CwK7q7GGCALPx6/dBALPx6/dBALPx/PeBAL274yWCwLftdrNAwKBwuasBgKBwoK6BgKAur6oDwK
3vpOgBQK3vs
%2bjBQKOlrDrCgKnzOawAgL5u9rRBwL5u77HBy3z/IWoSWalJtHcoq/enYJ3xLT2&__VIEWSTATE=/wE
PDwUKMTIyMjU1NzM3MQ9kFgICAw9kFgYCBQ8QDxYGHg1EYXRhVGV4dEZpZWxkBQRuYW1lHg5EYXRhVmF
sdWVGaWVsZAUCaWQeC18hRGF0YUJvdW5kZ2QQFTUSLS0t5omA5pyJ5Y2V5L2NLS0tBua2ieWOvw/kuqf
mnYPkuqTmmJPmiYAJ5Z%2bO566h5bGACeWcsOeojuWxgAnlronnm5HlsYAJ5Zu95Zyf5bGADOayu
%2bWuieWkp
%2bmYnwbmrovogZQJ5Zyw6ZyH5bGACeW3peWVhuWxgAnlj5HmlLnlsYAJ5p6X5Lia5bGACeWbveeojuW
xgAnlhpzmnLrlsYAJ546v5L%2bd5bGACeawkeaUv
%2bWxgAnorqHnlJ/lsYAJ57uf6K6h5bGACeS6uumYsuWKngnlj7jms5XlsYAJ5Yac54mn5bGADOS6pOi
tpuWkp%2bmYnwnkuqTpgJrlsYAJ5rCU6LGh5bGADOaWh%2bW5v
%2baWsOWxgAbljr/npL4M5raI6Ziy5aSn6ZifD%2beDn%2biNieS4k
%2bWNluWxgAnotKjnm5HlsYAY5Y6/6YWS57G755uR552j566h55CG5YqeCeaWh
%2beJqeWxgAnljavnlJ/lsYAJ5L2P5bu65bGACeeyrumjn
%2bWxgAnkurrnpL7lsYAJ54mp5Lu35bGACeawtOWIqeWxgAbnvJblip4J5oi/566h5YqeCeWul
%2baVmeWxgBLlt6XnqIvkuqTmmJPkuK3lv4MJ5YWs5a6J5bGAEuaUv%2bW6nOmHh
%2bi0reS4reW/gxjmi5vmipXmoIfkuqfmnYPkuqTmmJPlip4J6I2v55uR5bGACeaVmeS9k
%2bWxgAnllYbliqHlsYAM5ama5ae755m76K6wD
%2baWsOWGnOWQiOS4reW/gxjotKLmlL/pm4bkuK3mlK/ku5jkuK3lv4Mb57Si5aCh6ZWH5L6/5rCR5py
N5Yqh5Lit5b%2bDG%2ba2ieWfjumVh%2bS%2bv
%2bawkeacjeWKoeS4reW/gxU1ATADMTAxAzE4MQMxODIDMTgzAzE4NAMxODUDMTg2AzE4NwMxODkDMTk
xAzE5MgMxOTMDMTk1AzE5NgMxOTcDMTk4AzIwMAMyMDEDMjAyAzIwMwMyMDQDMjA1AzIwNwMyMDgDMjA
5AzIxMAMyMTEDMjEyAzIxMwMyMTQDMjE1AzIxNgMyMTgDMjIwAzIyMQMyMjIDMjIzAzIyNAMyMjYDMjI
3AzIyOAMyMjkDMjMwAzIzMQMyMzIDMjM1AzIzNgMyNDADMjQxAzI0MgMyNDYDMjQ3FCsDNWdnZ2dnZ2d
nZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZ2dnZGQCCw88KwANAQAPFgY
eDUVtcHR5RGF0YVRleHQFCeaXoOiusOW9lR8CZx4LXyFJdGVtQ291bnQCNGQWAmYPZBZsAgEPD2QWBB4
Lb25tb3VzZW92ZXIFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx4Kb25tb3VzZW91dAUWdGh
pcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIeBFRleHQFATFkZAIBD2QWAmYPFQIDMTAxBua2ieWOv2Q
CAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8
VAQEwZAIHD2QWAmYPFQEBMGQCAg8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8
GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUBMmRkAgEPZBYCZg8VAgMxODEP5Lqn5p2
D5Lqk5piT5omAZAICD2QWAmYPFQEBN2QCAw9kFgJmDxUBATdkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQE
BMGQCBg9kFgJmDxUBATdkAgcPZBYCZg8VAQEwZAIDDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25
Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFATNkZAIBD2QWAmYPFQI
DMTgyCeWfjueuoeWxgGQCAg9kFgJmDxUBAzE4NWQCAw9kFgJmDxUBAzE4NWQCBA9kFgJmDxUBATBkAgU
PZBYCZg8VAQEwZAIGD2QWAmYPFQEDMTg1ZAIHD2QWAmYPFQEBMGQCBA8PZBYEHwUFHnRoaXMuY2xhc3N
OYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUBNGR
kAgEPZBYCZg8VAgMxODMJ5Zyw56iO5bGAZAICD2QWAmYPFQECODZkAgMPZBYCZg8VAQI4NmQCBA9kFgJ
mDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQECODZkAgcPZBYCZg8VAQEwZAIFDw9kFgQfBQUedGh
pcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxY
CHwcFATVkZAIBD2QWAmYPFQIDMTg0CeWuieebkeWxgGQCAg9kFgJmDxUBAzQyNWQCAw9kFgJmDxUBAzQ
yM2QCBA9kFgJmDxUBATNkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEDNDI1ZAIHD2QWAmYPFQEBMGQCBg8
PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZ
Sb3cyJxYQZg8PFgIfBwUBNmRkAgEPZBYCZg8VAgMxODUJ5Zu95Zyf5bGAZAICD2QWAmYPFQEDNjAxZAI
DD2QWAmYPFQEDNjAxZAIED2QWAmYPFQECNDFkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEDNjAxZAIHD2Q
WAmYPFQEBMGQCBw8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRZ0aGlzLmN
sYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQE3ZGQCAQ9kFgJmDxUCAzE4NgzmsrvlronlpKfpmJ9kAgI
PZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQE
BMGQCBw9kFgJmDxUBATBkAggPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgU
XdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFAThkZAIBD2QWAmYPFQIDMTg3Buaui
%2biBlGQCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgY
PZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCCQ8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2V
PdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQE5ZGQCAQ9kFgJmDxUCAzE4OQn
lnLDpnIflsYBkAgIPZBYCZg8VAQIyMWQCAw9kFgJmDxUBAjIxZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxU
BATBkAgYPZBYCZg8VAQIyMWQCBw9kFgJmDxUBATBkAgoPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFAjEwZGQCAQ9kFgJ
mDxUCAzE5MQnlt6XllYblsYBkAgIPZBYCZg8VAQM0NzlkAgMPZBYCZg8VAQM0NzlkAgQPZBYCZg8VAQE
wZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzQ3OWQCBw9kFgJmDxUBATBkAgsPD2QWBB8FBR50aGlzLmN
sYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwU
CMTFkZAIBD2QWAmYPFQIDMTkyCeWPkeaUueWxgGQCAg9kFgJmDxUBAzE5OWQCAw9kFgJmDxUBAzE5OWQ
CBA9kFgJmDxUBATFkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEDMTk5ZAIHD2QWAmYPFQEBMGQCDA8PZBY
EHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3c
yJxYQZg8PFgIfBwUCMTJkZAIBD2QWAmYPFQIDMTkzCeael
%2bS4muWxgGQCAg9kFgJmDxUBAzc3OWQCAw9kFgJmDxUBAzc3OWQCBA9kFgJmDxUBATBkAgUPZBYCZg8
VAQEwZAIGD2QWAmYPFQEDNzc5ZAIHD2QWAmYPFQEBMGQCDQ8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSd
kdk9uTW91c2VPdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQIxM2RkAgEPZBY
CZg8VAgMxOTUJ5Zu956iO5bGAZAICD2QWAmYPFQECNThkAgMPZBYCZg8VAQI1OGQCBA9kFgJmDxUBATB
kAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQECNThkAgcPZBYCZg8VAQEwZAIODw9kFgQfBQUedGhpcy5jbGF
zc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI
xNGRkAgEPZBYCZg8VAgMxOTYJ5Yac5py65bGAZAICD2QWAmYPFQECOTZkAgMPZBYCZg8VAQI5NmQCBA9
kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQECOTZkAgcPZBYCZg8VAQEwZAIPDw9kFgQfBQU
edGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGY
PDxYCHwcFAjE1ZGQCAQ9kFgJmDxUCAzE5Nwnnjq/kv53lsYBkAgIPZBYCZg8VAQMxNjdkAgMPZBYCZg8
VAQMxNjZkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzE2N2QCBw9kFgJmDxUBATB
kAhAPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU
9J2R2Um93MicWEGYPDxYCHwcFAjE2ZGQCAQ9kFgJmDxUCAzE5OAnmsJHmlL/lsYBkAgIPZBYCZg8VAQM
yODNkAgMPZBYCZg8VAQMyODNkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzI4M2Q
CBw9kFgJmDxUBATBkAhEPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGh
pcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMTdkZAIBD2QWAmYPFQIDMjAwCeiuoeeUn
%2bWxgGQCAg9kFgJmDxUBAzkxOGQCAw9kFgJmDxUBAzkxN2QCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQEDOTE4ZAIHD2QWAmYPFQEBMGQCEg8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9
uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUCMThkZAIBD2QWAmY
PFQIDMjAxCee7n
%2biuoeWxgGQCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATB
kAgYPZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCEw8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW9
1c2VPdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQIxOWRkAgEPZBYCZg8VAgM
yMDIJ5Lq66Ziy5YqeZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIUDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R
2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIyMGRkAgEPZBY
CZg8VAgMyMDMJ5Y
%2b45rOV5bGAZAICD2QWAmYPFQEBMmQCAw9kFgJmDxUBATJkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEB
MGQCBg9kFgJmDxUBATJkAgcPZBYCZg8VAQEwZAIVDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25N
b3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFAjIxZGQCAQ9kFgJmDxUC
AzIwNAnlhpzniaflsYBkAgIPZBYCZg8VAQExZAIDD2QWAmYPFQEBMWQCBA9kFgJmDxUBATBkAgUPZBYC
Zg8VAQEwZAIGD2QWAmYPFQEBMWQCBw9kFgJmDxUBATBkAhYPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0n
ZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFAjIyZGQCAQ9k
FgJmDxUCAzIwNQzkuqTorablpKfpmJ9kAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUB
ATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAhcPD2QWBB8FBR50aGlzLmNs
YXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUC
MjNkZAIBD2QWAmYPFQIDMjA3CeS6pOmAmuWxgGQCAg9kFgJmDxUBAzk1NmQCAw9kFgJmDxUBAzk1NmQC
BA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEDOTU2ZAIHD2QWAmYPFQEBMGQCGA8PZBYE
HwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3cy
JxYQZg8PFgIfBwUCMjRkZAIBD2QWAmYPFQIDMjA4CeawlOixoeWxgGQCAg9kFgJmDxUBAjY3ZAIDD2QW
AmYPFQECNjdkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAjY3ZAIHD2QWAmYPFQEB
MGQCGQ8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRZ0aGlzLmNsYXNzTmFt
ZT0nZHZSb3cnFhBmDw8WAh8HBQIyNWRkAgEPZBYCZg8VAgMyMDkM5paH5bm/5paw5bGAZAICD2QWAmYP
FQEBNWQCAw9kFgJmDxUBATNkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBATVkAgcP
ZBYCZg8VAQEwZAIaDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMu
Y2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIyNmRkAgEPZBYCZg8VAgMyMTAG5Y6/56S
%2bZAICD2QWAmYPFQEDMTc0ZAIDD2QWAmYPFQEDMTc0ZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkA
gYPZBYCZg8VAQMxNzRkAgcPZBYCZg8VAQEwZAIbDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb
3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFAjI3ZGQCAQ9kFgJmDxUCA
zIxMQzmtojpmLLlpKfpmJ9kAgIPZBYCZg8VAQI0MGQCAw9kFgJmDxUBAjQwZAIED2QWAmYPFQEBMGQCB
Q9kFgJmDxUBATBkAgYPZBYCZg8VAQI0MGQCBw9kFgJmDxUBATBkAhwPD2QWBB8FBR50aGlzLmNsYXNzT
mFtZT0nZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFAjI4Z
GQCAQ9kFgJmDxUCAzIxMg/ng5/ojYnkuJPljZblsYBkAgIPZBYCZg8VAQMzMzRkAgMPZBYCZg8VAQMzM
zRkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzMzNGQCBw9kFgJmDxUBATBkAh0PD
2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2U
m93JxYQZg8PFgIfBwUCMjlkZAIBD2QWAmYPFQIDMjEzCei0qOebkeWxgGQCAg9kFgJmDxUBAzE3MmQCA
w9kFgJmDxUBAzE3MmQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEDMTcyZAIHD2QWA
mYPFQEBMGQCHg8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsY
XNzTmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUCMzBkZAIBD2QWAmYPFQIDMjE0GOWOv%2bmFkuexu
%2bebkeedo
%2beuoeeQhuWKnmQCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxU
BATBkAgYPZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCHw8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9
uTW91c2VPdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQIzMWRkAgEPZBYCZg8
VAgMyMTUJ5paH54mp5bGAZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2Q
WAmYPFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIgDw9kFgQfBQUedGhpcy5jbGFzc05hbWU
9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIzMmRkAgE
PZBYCZg8VAgMyMTYJ5Y2r55Sf5bGAZAICD2QWAmYPFQEEMTM5MmQCAw9kFgJmDxUBBDEzOTJkAgQPZBY
CZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBBDEzOTJkAgcPZBYCZg8VAQEwZAIhDw9kFgQfBQU
edGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGY
PDxYCHwcFAjMzZGQCAQ9kFgJmDxUCAzIxOAnkvY/lu7rlsYBkAgIPZBYCZg8VAQM0NTdkAgMPZBYCZg8
VAQM0NTZkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzQ1N2QCBw9kFgJmDxUBATB
kAiIPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU
9J2R2Um93MicWEGYPDxYCHwcFAjM0ZGQCAQ9kFgJmDxUCAzIyMAnnsq7po5/lsYBkAgIPZBYCZg8VAQE
wZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJ
mDxUBATBkAiMPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGF
zc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMzVkZAIBD2QWAmYPFQIDMjIxCeS6uuekvuWxgGQCAg9kFgJ
mDxUBBDI1MDZkAgMPZBYCZg8VAQQyNTA2ZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8
VAQQyNTA2ZAIHD2QWAmYPFQEBMGQCJA8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmV
yJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUCMzZkZAIBD2QWAmYPFQIDMjIyCee
JqeS7t
%2bWxgGQCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgY
PZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCJQ8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2V
PdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQIzN2RkAgEPZBYCZg8VAgMyMjM
J5rC05Yip5bGAZAICD2QWAmYPFQECMTBkAgMPZBYCZg8VAQIxMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8
VAQEwZAIGD2QWAmYPFQECMTBkAgcPZBYCZg8VAQEwZAImDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R
2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIzOGRkAgEPZBY
CZg8VAgMyMjQG57yW5YqeZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2Q
WAmYPFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAInDw9kFgQfBQUedGhpcy5jbGFzc05hbWU
9J2R2T25Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFAjM5ZGQCAQ9
kFgJmDxUCAzIyNgnmiL/nrqHlip5kAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATB
kAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAigPD2QWBB8FBR50aGlzLmNsYXN
zTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFAjQ
wZGQCAQ9kFgJmDxUCAzIyNwnlrpfmlZnlsYBkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJ
mDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAikPD2QWBB8FBR50aGl
zLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgI
fBwUCNDFkZAIBD2QWAmYPFQIDMjI4EuW3peeoi%2bS6pOaYk
%2bS4reW/g2QCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATB
kAgYPZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCKg8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW9
1c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUCNDJkZAIBD2QWAmYPFQI
DMjI5CeWFrOWuieWxgGQCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJ
mDxUBATBkAgYPZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCKw8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSd
kdk9uTW91c2VPdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQI0M2RkAgEPZBY
CZg8VAgMyMzAS5pS/5bqc6YeH6LSt5Lit5b
%2bDZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9k
FgJmDxUBATBkAgcPZBYCZg8VAQEwZAIsDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92
ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI0NGRkAgEPZBYCZg8VAgMyMzEY
5oub5oqV5qCH5Lqn5p2D5Lqk5piT5YqeZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8V
AQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAItDw9kFgQfBQUedGhpcy5j
bGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcF
AjQ1ZGQCAQ9kFgJmDxUCAzIzMgnoja/nm5HlsYBkAgIPZBYCZg8VAQI3NWQCAw9kFgJmDxUBAjc1ZAIE
D2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQI3NWQCBw9kFgJmDxUBATBkAi4PD2QWBB8F
BR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicW
EGYPDxYCHwcFAjQ2ZGQCAQ9kFgJmDxUCAzIzNQnmlZnkvZPlsYBkAgIPZBYCZg8VAQEwZAIDD2QWAmYP
FQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAi8P
D2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2
Um93JxYQZg8PFgIfBwUCNDdkZAIBD2QWAmYPFQIDMjM2CeWVhuWKoeWxgGQCAg9kFgJmDxUBAjQ5ZAID
D2QWAmYPFQECNDlkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAjQ5ZAIHD2QWAmYP
FQEBMGQCMA8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNz
TmFtZT0nZHZSb3cyJxYQZg8PFgIfBwUCNDhkZAIBD2QWAmYPFQIDMjQwDOWpmuWnu%2beZu
%2biusGQCAg9kFgJmDxUBATBkAgMPZBYCZg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgY
PZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQCMQ8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2V
PdmVyJx8GBRZ0aGlzLmNsYXNzTmFtZT0nZHZSb3cnFhBmDw8WAh8HBQI0OWRkAgEPZBYCZg8VAgMyNDE
P5paw5Yac5ZCI5Lit5b
%2bDZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9k
FgJmDxUBATBkAgcPZBYCZg8VAQEwZAIyDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92
ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI1MGRkAgEPZBYCZg8VAgMyNDIY
6LSi5pS/6ZuG5Lit5pSv5LuY5Lit5b
%2bDZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9k
FgJmDxUBATBkAgcPZBYCZg8VAQEwZAIzDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92
ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFAjUxZGQCAQ9kFgJmDxUCAzI0Nhvn
tKLloKHplYfkvr/msJHmnI3liqHkuK3lv4NkAgIPZBYCZg8VAQM3MTRkAgMPZBYCZg8VAQM3MTRkAgQP
ZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzcxNGQCBw9kFgJmDxUBATBkAjQPD2QWBB8F
BR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicW
EGYPDxYCHwcFAjUyZGQCAQ9kFgJmDxUCAzI0Nxvmtonln47plYfkvr/msJHmnI3liqHkuK3lv4NkAgIP
ZBYCZg8VAQMzNjRkAgMPZBYCZg8VAQMzNTVkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJm
DxUBAzM2NGQCBw9kFgJmDxUBATBkAjUPDxYCHgdWaXNpYmxlaGRkAjYPDxYCHwhoZBYCZg9kFgYCAQ8P
FgIfBwUBMWRkAgMPDxYCHwcFATFkZAINDw8WAh8HBQExZGQCDQ88KwANAQAPFgQfAmcfBAI0ZBYCZg9k
FmwCAQ8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRZ0aGlzLmNsYXNzTmFt
ZT0nZHZSb3cnFhBmDw8WAh8HBQExZGQCAQ8PFgIfBwUG5raJ5Y6/ZGQCAg9kFgJmDxUBATBkAgMPZBYC
Zg8VAQEwZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQEwZAIHD2QWAmYPFQEBMGQC
Ag8PZBYEHwUFHnRoaXMuY2xhc3NOYW1lPSdkdk9uTW91c2VPdmVyJx8GBRd0aGlzLmNsYXNzTmFtZT0n
ZHZSb3cyJxYQZg8PFgIfBwUBMmRkAgEPDxYCHwcFD%2bS6p%2badg%2bS6pOaYk
%2baJgGRkAgIPZBYCZg8VAQE3ZAIDD2QWAmYPFQEBN2QCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBN2QCBw9kFgJmDxUBATBkAgMPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUBM2RkAgEPDxYCHwcFCeWfjue
uoeWxgGRkAgIPZBYCZg8VAQMxODVkAgMPZBYCZg8VAQMxODVkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQE
BMGQCBg9kFgJmDxUBAzE4NWQCBw9kFgJmDxUBATBkAgQPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFATRkZAIBDw8WAh8
HBQnlnLDnqI7lsYBkZAICD2QWAmYPFQECODZkAgMPZBYCZg8VAQI4NmQCBA9kFgJmDxUBATBkAgUPZBY
CZg8VAQEwZAIGD2QWAmYPFQECODZkAgcPZBYCZg8VAQEwZAIFDw9kFgQfBQUedGhpcy5jbGFzc05hbWU
9J2R2T25Nb3VzZU92ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFATVkZAIBDw8
WAh8HBQnlronnm5HlsYBkZAICD2QWAmYPFQEDNDI1ZAIDD2QWAmYPFQEDNDIzZAIED2QWAmYPFQEBM2Q
CBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQM0MjVkAgcPZBYCZg8VAQEwZAIGDw9kFgQfBQUedGhpcy5jbGF
zc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQE
2ZGQCAQ8PFgIfBwUJ5Zu95Zyf5bGAZGQCAg9kFgJmDxUBAzYwMWQCAw9kFgJmDxUBAzYwMWQCBA9kFgJ
mDxUBAjQxZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzYwMWQCBw9kFgJmDxUBATBkAgcPD2QWBB8FBR5
0aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8
PFgIfBwUBN2RkAgEPDxYCHwcFDOayu%2bWuieWkp
%2bmYn2RkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAggPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUXdGhpcy5jbGFzc05hbWU9J2R2Um93MicWEGYPDxYCHwcFAThkZAIBDw8WAh8HBQbmrov
ogZRkZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9
kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIJDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU9
2ZXInHwYFFnRoaXMuY2xhc3NOYW1lPSdkdlJvdycWEGYPDxYCHwcFATlkZAIBDw8WAh8HBQnlnLDpnIf
lsYBkZAICD2QWAmYPFQECMjFkAgMPZBYCZg8VAQIyMWQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQECMjFkAgcPZBYCZg8VAQEwZAIKDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3V
zZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIxMGRkAgEPDxYCHwcFCeW
3peWVhuWxgGRkAgIPZBYCZg8VAQM0NzlkAgMPZBYCZg8VAQM0NzlkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBAzQ3OWQCBw9kFgJmDxUBATBkAgsPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0
nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMTFkZAIBDw8
WAh8HBQnlj5HmlLnlsYBkZAICD2QWAmYPFQEDMTk5ZAIDD2QWAmYPFQEDMTk5ZAIED2QWAmYPFQEBMWQ
CBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQMxOTlkAgcPZBYCZg8VAQEwZAIMDw9kFgQfBQUedGhpcy5jbGF
zc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI
xMmRkAgEPDxYCHwcFCeael
%2bS4muWxgGRkAgIPZBYCZg8VAQM3NzlkAgMPZBYCZg8VAQM3NzlkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBAzc3OWQCBw9kFgJmDxUBATBkAg0PD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0
nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMTNkZAIBDw8
WAh8HBQnlm73nqI7lsYBkZAICD2QWAmYPFQECNThkAgMPZBYCZg8VAQI1OGQCBA9kFgJmDxUBATBkAgU
PZBYCZg8VAQEwZAIGD2QWAmYPFQECNThkAgcPZBYCZg8VAQEwZAIODw9kFgQfBQUedGhpcy5jbGFzc05
hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIxNGR
kAgEPDxYCHwcFCeWGnOacuuWxgGRkAgIPZBYCZg8VAQI5NmQCAw9kFgJmDxUBAjk2ZAIED2QWAmYPFQE
BMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQI5NmQCBw9kFgJmDxUBATBkAg8PD2QWBB8FBR50aGlzLmN
sYXNzTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwU
CMTVkZAIBDw8WAh8HBQnnjq/kv53lsYBkZAICD2QWAmYPFQEDMTY3ZAIDD2QWAmYPFQEDMTY2ZAIED2Q
WAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQMxNjdkAgcPZBYCZg8VAQEwZAIQDw9kFgQfBQU
edGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhB
mDw8WAh8HBQIxNmRkAgEPDxYCHwcFCeawkeaUv
%2bWxgGRkAgIPZBYCZg8VAQMyODNkAgMPZBYCZg8VAQMyODNkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQE
BMGQCBg9kFgJmDxUBAzI4M2QCBw9kFgJmDxUBATBkAhEPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMTdkZAIBDw8WAh8
HBQnorqHnlJ/lsYBkZAICD2QWAmYPFQEDOTE4ZAIDD2QWAmYPFQEDOTE3ZAIED2QWAmYPFQEBMGQCBQ9
kFgJmDxUBATBkAgYPZBYCZg8VAQM5MThkAgcPZBYCZg8VAQEwZAISDw9kFgQfBQUedGhpcy5jbGFzc05
hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIxOGR
kAgEPDxYCHwcFCee7n
%2biuoeWxgGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAhMPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1
vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMTlkZAIBDw8WAh8HBQn
kurrpmLLlip5kZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQE
BMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIUDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25
Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIyMGRkAgEPDxYCHwc
FCeWPuOazleWxgGRkAgIPZBYCZg8VAQEyZAIDD2QWAmYPFQEBMmQCBA9kFgJmDxUBATBkAgUPZBYCZg8
VAQEwZAIGD2QWAmYPFQEBMmQCBw9kFgJmDxUBATBkAhUPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMjFkZAIBDw8WAh8
HBQnlhpzniaflsYBkZAICD2QWAmYPFQEBMWQCAw9kFgJmDxUBATFkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBATFkAgcPZBYCZg8VAQEwZAIWDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R
2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIyMmRkAgEPDxY
CHwcFDOS6pOitpuWkp
%2bmYn2RkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAhcPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMjNkZAIBDw8WAh8HBQnkuqT
pgJrlsYBkZAICD2QWAmYPFQEDOTU2ZAIDD2QWAmYPFQEDOTU2ZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxU
BATBkAgYPZBYCZg8VAQM5NTZkAgcPZBYCZg8VAQEwZAIYDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R
2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIyNGRkAgEPDxY
CHwcFCeawlOixoeWxgGRkAgIPZBYCZg8VAQI2N2QCAw9kFgJmDxUBAjY3ZAIED2QWAmYPFQEBMGQCBQ9
kFgJmDxUBATBkAgYPZBYCZg8VAQI2N2QCBw9kFgJmDxUBATBkAhkPD2QWBB8FBR50aGlzLmNsYXNzTmF
tZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMjVkZAI
BDw8WAh8HBQzmloflub/mlrDlsYBkZAICD2QWAmYPFQEBNWQCAw9kFgJmDxUBATNkAgQPZBYCZg8VAQE
wZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBATVkAgcPZBYCZg8VAQEwZAIaDw9kFgQfBQUedGhpcy5jbGF
zc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI
yNmRkAgEPDxYCHwcFBuWOv
%2bekvmRkAgIPZBYCZg8VAQMxNzRkAgMPZBYCZg8VAQMxNzRkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQE
BMGQCBg9kFgJmDxUBAzE3NGQCBw9kFgJmDxUBATBkAhsPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMjdkZAIBDw8WAh8
HBQzmtojpmLLlpKfpmJ9kZAICD2QWAmYPFQECNDBkAgMPZBYCZg8VAQI0MGQCBA9kFgJmDxUBATBkAgU
PZBYCZg8VAQEwZAIGD2QWAmYPFQECNDBkAgcPZBYCZg8VAQEwZAIcDw9kFgQfBQUedGhpcy5jbGFzc05
hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIyOGR
kAgEPDxYCHwcFD%2beDn%2biNieS4k
%2bWNluWxgGRkAgIPZBYCZg8VAQMzMzRkAgMPZBYCZg8VAQMzMzRkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBAzMzNGQCBw9kFgJmDxUBATBkAh0PD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0
nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMjlkZAIBDw8
WAh8HBQnotKjnm5HlsYBkZAICD2QWAmYPFQEDMTcyZAIDD2QWAmYPFQEDMTcyZAIED2QWAmYPFQEBMGQ
CBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQMxNzJkAgcPZBYCZg8VAQEwZAIeDw9kFgQfBQUedGhpcy5jbGF
zc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI
zMGRkAgEPDxYCHwcFGOWOv%2bmFkuexu%2bebkeedo
%2beuoeeQhuWKnmRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8
VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAh8PD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMzFkZAIBDw8WAh8
HBQnmlofnianlsYBkZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIgDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R
2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIzMmRkAgEPDxY
CHwcFCeWNq%2beUn
%2bWxgGRkAgIPZBYCZg8VAQQxMzkyZAIDD2QWAmYPFQEEMTM5MmQCBA9kFgJmDxUBATBkAgUPZBYCZg8
VAQEwZAIGD2QWAmYPFQEEMTM5MmQCBw9kFgJmDxUBATBkAiEPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0
nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMzNkZAIBDw8
WAh8HBQnkvY/lu7rlsYBkZAICD2QWAmYPFQEDNDU3ZAIDD2QWAmYPFQEDNDU2ZAIED2QWAmYPFQEBMGQ
CBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQM0NTdkAgcPZBYCZg8VAQEwZAIiDw9kFgQfBQUedGhpcy5jbGF
zc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI
zNGRkAgEPDxYCHwcFCeeyrumjn
%2bWxgGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAiMPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMzVkZAIBDw8WAh8HBQnkurr
npL7lsYBkZAICD2QWAmYPFQEEMjUwNmQCAw9kFgJmDxUBBDI1MDZkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBBDI1MDZkAgcPZBYCZg8VAQEwZAIkDw9kFgQfBQUedGhpcy5jbGFzc05hbWU
9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIzNmRkAgE
PDxYCHwcFCeeJqeS7t
%2bWxgGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAiUPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMzdkZAIBDw8WAh8HBQnmsLT
liKnlsYBkZAICD2QWAmYPFQECMTBkAgMPZBYCZg8VAQIxMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQECMTBkAgcPZBYCZg8VAQEwZAImDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25
Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQIzOGRkAgEPDxYCHwc
FBue8luWKnmRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAicPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1
vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCMzlkZAIBDw8WAh8HBQn
miL/nrqHlip5kZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmYPFQE
BMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIoDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25
Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI0MGRkAgEPDxYCHwc
FCeWul
%2baVmeWxgGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAikPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1
vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCNDFkZAIBDw8WAh8HBRL
lt6XnqIvkuqTmmJPkuK3lv4NkZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAI
FD2QWAmYPFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIqDw9kFgQfBQUedGhpcy5jbGFzc05
hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI0MmR
kAgEPDxYCHwcFCeWFrOWuieWxgGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATB
kAgUPZBYCZg8VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAisPD2QWBB8FBR50aGlzLmNsYXN
zTmFtZT0nZHZPbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCNDN
kZAIBDw8WAh8HBRLmlL/lupzph4fotK3kuK3lv4NkZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQ
PZBYCZg8VAQEwZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIsDw9kFgQfBQU
edGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhB
mDw8WAh8HBQI0NGRkAgEPDxYCHwcFGOaLm%2baKleagh%2bS6p%2badg%2bS6pOaYk
%2bWKnmRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAi0PD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCNDVkZAIBDw8WAh8HBQnoja/
nm5HlsYBkZAICD2QWAmYPFQECNzVkAgMPZBYCZg8VAQI3NWQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQECNzVkAgcPZBYCZg8VAQEwZAIuDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25
Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI0NmRkAgEPDxYCHwc
FCeaVmeS9k
%2bWxgGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAi8PD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCNDdkZAIBDw8WAh8HBQnllYb
liqHlsYBkZAICD2QWAmYPFQECNDlkAgMPZBYCZg8VAQI0OWQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQE
wZAIGD2QWAmYPFQECNDlkAgcPZBYCZg8VAQEwZAIwDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25
Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI0OGRkAgEPDxYCHwc
FDOWpmuWnu%2beZu
%2biusGRkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8VAQEwZAI
GD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAjEPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZPbk1vdXN
lT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCNDlkZAIBDw8WAh8HBQ/mlrD
lhpzlkIjkuK3lv4NkZAICD2QWAmYPFQEBMGQCAw9kFgJmDxUBATBkAgQPZBYCZg8VAQEwZAIFD2QWAmY
PFQEBMGQCBg9kFgJmDxUBATBkAgcPZBYCZg8VAQEwZAIyDw9kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R
2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJvdzInFhBmDw8WAh8HBQI1MGRkAgEPDxY
CHwcFGOi0ouaUv%2bmbhuS4reaUr
%2bS7mOS4reW/g2RkAgIPZBYCZg8VAQEwZAIDD2QWAmYPFQEBMGQCBA9kFgJmDxUBATBkAgUPZBYCZg8
VAQEwZAIGD2QWAmYPFQEBMGQCBw9kFgJmDxUBATBkAjMPD2QWBB8FBR50aGlzLmNsYXNzTmFtZT0nZHZ
Pbk1vdXNlT3ZlcicfBgUWdGhpcy5jbGFzc05hbWU9J2R2Um93JxYQZg8PFgIfBwUCNTFkZAIBDw8WAh8
HBRvntKLloKHplYfkvr/msJHmnI3liqHkuK3lv4NkZAICD2QWAmYPFQEDNzE0ZAIDD2QWAmYPFQEDNzE
0ZAIED2QWAmYPFQEBMGQCBQ9kFgJmDxUBATBkAgYPZBYCZg8VAQM3MTRkAgcPZBYCZg8VAQEwZAI0Dw9
kFgQfBQUedGhpcy5jbGFzc05hbWU9J2R2T25Nb3VzZU92ZXInHwYFF3RoaXMuY2xhc3NOYW1lPSdkdlJ
vdzInFhBmDw8WAh8HBQI1MmRkAgEPDxYCHwcFG%2ba2ieWfjumVh%2bS%2bv
%2bawkeacjeWKoeS4reW/g2RkAgIPZBYCZg8VAQMzNjRkAgMPZBYCZg8VAQMzNTVkAgQPZBYCZg8VAQE
wZAIFD2QWAmYPFQEBMGQCBg9kFgJmDxUBAzM2NGQCBw9kFgJmDxUBATBkAjUPDxYCHwhoZGQCNg8PFgI
fCGhkFgJmD2QWBgIBDw8WAh8HBQExZGQCAw8PFgIfBwUBMWRkAg0PDxYCHwcFATFkZBgCBQlHcmlkVml
ldzEPPCsACgEIAgFkBQZndkxpc3QPPCsACgEIAgFkz%2bWturTH8nDtfkXUcu32B3lPdcs%3d


QQ截图20150915012902.png


QQ截图20150915013038.png


QQ截图20150915013105.png


修复方案:

版权声明:转载请注明来源 路人甲@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:16

确认时间:2015-09-20 19:45

厂商回复:

CNVD确认并复现所述情况,已由CNVD通过软件生产厂商以往建立的处置渠道向其邮件通报,由其后续提供修复方案。同时,将相关案例下发给对应的CNCERT分中心,由其后续协调网站管理单位处置。

最新状态:

暂无