当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2011-02930

漏洞标题:UC用户信息泄露

相关厂商:UC Mobile

漏洞作者: xyulab

提交时间:2011-10-03 00:56

修复时间:2011-10-08 00:57

公开时间:2011-10-08 00:57

漏洞类型:重要敏感信息泄露

危害等级:低

自评Rank:4

漏洞状态:漏洞已经通知厂商但是厂商忽略漏洞

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:


漏洞详情

披露状态:

2011-10-03: 细节已通知厂商并且等待厂商处理中
2011-10-08: 厂商已经主动忽略漏洞,细节向公众公开

简要描述:

UC用户信息泄露

详细说明:

http://vip.uc.cn/svc/pm/sms?uccpara=fx%3Dmob1649%60ver%3D7.8.0.87%60sn%3D1107-1034964554-ca8b8b78%60cver%3DNone%60width%3D240%60height%3D320%60ua%3DNOKIAN78%60ip%3D221.176.88.9%60nbr%3D%60fr%3Dsis%60ln%3Dzh_CN%60disp%3D%60feature_bit1%3D1144486655%60lang%3Dzh-cn%60pfid%3D28%60sms_no%3D%252B8613800898500%60ch%3Dadmin%40auto*%60mdn%3D%60prd%3DUCBrowser%60via%3DHTTP%2F1.1%2520HIHK-PS-WAP2-SV09-WAP3%2520(infoX-WISG%2C%2520Huawei%2520Technologies)%60innerip%3D221.176.88.9%60bid%3D800%60wi%3D%60li%3Dg9qKibW4p5yD14qJ*6sy4%2Fa04CxvqSR1dqA17u%2FrpHc0Ic%3D%60pver%3D3.1%60gi%3D%60btype%3DUM%60imei%3D354175026825200%60cp%3Disp%3A%25E7%25A7%25BB%25E5%258A%25A8%3Bprov%3A%25E6%25B5%25B7%25E5%258D%2597%3Bcity%3A%25E6%25B5%25B7%25E5%258F%25A3%3Bver%3A7.8.0.87%60bseq%3D11061716%60nt%3D0%60bmode%3DP3W%60imsi%3D460026089040783%60vcode%3D707d6399

漏洞证明:

修复方案:

不解释!

版权声明:转载请注明来源 xyulab@乌云


漏洞回应

厂商回应:

危害等级:无影响厂商忽略

忽略时间:2011-10-08 00:57

厂商回复:

漏洞Rank:7 (WooYun评价)

最新状态:

暂无


漏洞评价:

评论