宜信贷某站存在OpenSSL漏洞（心脏滴血）

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0154829

漏洞标题：宜信贷某站存在OpenSSL漏洞（心脏滴血）

漏洞作者： Aasron

提交时间：2015-11-22 10:02

修复时间：2016-01-11 15:32

公开时间：2016-01-11 15:32

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 help@wooyun.org

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

2015-11-22：细节已通知厂商并且等待厂商处理中
2015-11-23：厂商已经确认，细节仅向厂商公开
2015-12-03：细节向核心白帽子及相关领域专家公开
2015-12-13：细节向普通白帽子公开
2015-12-23：细节向实习白帽子公开
2016-01-11：细节向公众公开

简要描述：

宜信贷某站存在OpenSSL心脏滴血漏洞

详细说明：

出现OpenSSL hearbleed漏洞的域名：

http://zz.yixin.com/

来张logo

exp利用，泄露网站路径及其他敏感信息

2d90: 50 2F D3 01 00 00 00 00 46 00 00 00 00 00 00 00  P/......F.......
2da0: 5B 2F D3 01 00 00 00 00 A2 2F D3 01 00 00 00 00  [/......./......
2db0: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2dc0: AC 2F D3 01 00 00 00 00 57 00 00 00 00 00 00 00  ./......W.......
2dd0: B7 2F D3 01 00 00 00 00 0F 30 D3 01 00 00 00 00  ./.......0......
2de0: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2df0: 19 30 D3 01 00 00 00 00 46 00 00 00 00 00 00 00  .0......F.......
2e00: 24 30 D3 01 00 00 00 00 6B 30 D3 01 00 00 00 00  $0......k0......
2e10: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2e20: E0 F2 E0 01 00 00 00 00 30 00 00 00 00 00 00 00  ........0.......
2e30: EB F2 E0 01 00 00 00 00 1C F3 E0 01 00 00 00 00  ................
2e40: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2e50: 26 F3 E0 01 00 00 00 00 87 00 00 00 00 00 00 00  &...............
2e60: 31 F3 E0 01 00 00 00 00 B9 F3 E0 01 00 00 00 00  1...............
2e70: AD 74 40 F7 58 A1 24 43 F2 76 8B 72 31 96 85 3F  .t@.X.$C.v.r1..?
2e80: 9B 50 2D BA 15 31 72 3F 27 72 DC EB 7E 2E A6 53  .P-..1r?'r..~..S
2e90: 99 F8 1A 4D 4E E6 05 67 39 0A 15 87 EE 18 17 48  ...MN..g9......H
2ea0: 41 81 88 1F 5C E9 07 E3 5D F5 D6 11 0E 7D 39 B5  A...\...]....}9.
2eb0: 09 48 D7 86 FB AD 17 BD C3 CB E2 40 5B CD 2B 41  .H.........@[.+A
2ec0: BC C3 4A 75 1D 6C 5D A5 57 2C B1 D8 B9 8C DB AD  ..Ju.l].W,......
2ed0: 8D A8 E6 C6 59 B2 C4 1A 1D 9F 13 02 03 01 00 01  ....Y...........
2ee0: A3 82 01 68 30 82 01 64 30 1A 06 03 55 1D 11 04  ...h0..d0...U...
2ef0: 13 30 11 82 0F 77 77 77 2E 76 70 6C 75 73 65 72  .0...www.vpluser
2f00: 2E 63 6F 6D 30 09 06 03 55 1D 13 04 02 30 00 30  .com0...U....0.0
2f10: 0E 06 03 55 1D 0F 01 01 FF 04 04 03 02 05 A0 30  ...U...........0
2f20: 2B 06 03 55 1D 1F 04 24 30 22 30 20 A0 1E A0 1C  +..U...$0"0 ....
2f30: 86 1A 68 74 74 70 3A 2F 2F 73 64 2E 73 79 6D 63  ..http://sd.symc
2f40: 62 2E 63 6F 6D 2F 73 64 2E 63 72 6C 30 65 06 03  b.com/sd.crl0e..
2f50: 55 1D 20 04 5E 30 5C 30 5A 06 0A 60 86 48 01 86  U. .^0\0Z..`.H..
2f60: F8 45 01 07 36 30 4C 30 23 06 08 2B 06 01 05 05  .E..60L0#..+....
2f70: 07 02 01 16 17 68 74 74 70 73 3A 2F 2F 64 2E 73  .....https://d.s
2f80: 79 6D 63 62 2E 63 6F 6D 2F 63 70 73 30 25 06 08  ymcb.com/cps0%..
2f90: 2B 06 01 05 05 07 02 02 30 19 16 17 68 74 74 70  +.......0...http
2fa0: 73 3A 2F 2F 64 2E 73 79 6D 63 62 2E 63 6F 6D 2F  s://d.symcb.com/
2fb0: 72 70 61 30 1D 06 03 55 1D 25 04 16 30 14 06 08  rpa0...U.%..0...
2fc0: 2B 06 01 05 05 07 03 01 06 08 2B 06 01 05 05 07  +.........+.....
2fd0: 03 02 30 1F 06 03 55 1D 23 04 18 30 16 80 14 0D  ..0...U.#..0....
2fe0: 44 5C 16 53 44 C1 82 7E 1D 20 AB 25 F4 01 63 D8  D\.SD..~. .%..c.
2ff0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3210: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3220: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3230: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3240: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3250: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3260: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3270: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3290: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32d0: 00 00 00 00 00 00 00 00 31 37 36 2E 31 32 2E 31  ........176.12.1
32e0: 31 36 2E 36 36 20 2D 20 2D 20 5B 32 30 2F 4E 6F  16.66 - - [20/No
32f0: 76 2F 32 30 31 35 3A 31 38 3A 30 39 3A 32 30 20  v/2015:18:09:20
3300: 2B 30 38 30 30 5D 20 22 2D 22 20 34 30 30 20 30  +0800] "-" 400 0
3310: 20 22 2D 22 20 22 2D 22 0A A8 D3 01 00 00 00 00   "-" "-"........
3320: 05 00 00 00 00 00 00 00 1F A8 D3 01 00 00 00 00  ................
3330: 0C B4 D4 01 00 00 00 00 08 B5 27 AB 00 00 00 00  ..........'.....
3340: 06 00 00 00 00 00 00 00 3B A8 D3 01 00 00 00 00  ........;.......
3350: 03 00 00 00 00 00 00 00 42 A8 D3 01 00 00 00 00  ........B.......
3360: 16 B4 D4 01 00 00 00 00 7D 8A D9 2F 88 9F 00 B7  ........}../....
3370: 0F 00 00 00 00 00 00 00 47 A8 D3 01 00 00 00 00  ........G.......
3380: 08 00 00 00 00 00 00 00 57 A8 D3 01 00 00 00 00  ........W.......
3390: 1C B4 D4 01 00 00 00 00 78 24 06 F6 5D 9F 00 B7  ........x$..]...
33a0: 0F 00 00 00 00 00 00 00 61 A8 D3 01 00 00 00 00  ........a.......
33b0: 0C 00 00 00 00 00 00 00 71 A8 D3 01 00 00 00 00  ........q.......
33c0: 2B B4 D4 01 00 00 00 00 DE 7E C4 D1 91 A5 09 00  +........~......
33d0: 0A 00 00 00 00 00 00 00 7F A8 D3 01 00 00 00 00  ................
33e0: 05 00 00 00 00 00 00 00 8A A8 D3 01 00 00 00 00  ................
33f0: 3A B4 D4 01 00 00 00 00 7D 8A D9 2F 88 9F 00 B7  :.......}../....
3400: 0F 00 00 00 00 00 00 00 68 A9 D3 01 00 00 00 00  ........h.......
3410: 0E 00 00 00 00 00 00 00 79 A9 D3 01 00 00 00 00  ........y.......
3420: 3C B4 D4 01 00 00 00 00 64 0A 40 AF 00 00 00 00  <.......d.@.....
3430: 06 00 00 00 00 00 00 00 89 A9 D3 01 00 00 00 00  ................
3440: 77 00 00 00 00 00 00 00 91 A9 D3 01 00 00 00 00  w...............
3450: 4B B4 D4 01 00 00 00 00 03 01 00 01 A3 82 01 DF  K...............
3460: 30 82 01 DB 30 34 06 08 2B 06 01 05 05 07 01 01  0...04..+.......
3470: 04 28 30 26 30 24 06 08 2B 06 01 05 05 07 30 01  .(0&0$..+.....0.
3480: 86 18 68 74 74 70 3A 2F 2F 6F 63 73 70 2E 76 65  ..http://ocsp.ve
3490: 72 69 73 69 67 6E 2E 63 6F 6D 30 12 06 03 55 1D  risign.com0...U.
34a0: 13 01 01 FF 04 08 30 06 01 01 FF 02 01 00 30 70  ......0.......0p
34b0: 06 03 55 1D 20 04 69 30 67 30 65 06 0B 60 86 48  ..U. .i0g0e..`.H
34c0: 01 86 F8 45 01 07 17 03 30 56 30 28 06 08 2B 06  ...E....0V0(..+.
34d0: 01 05 05 07 02 01 16 1C 68 74 74 70 73 3A 2F 2F  ........https://
34e0: 77 77 77 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D  www.verisign.com
34f0: 2F 63 70 73 30 2A 06 08 2B 06 01 05 05 07 02 02  /cps0*..+.......
3500: 30 1E 1A 1C 68 74 74 70 73 3A 2F 2F 77 77 77 2E  0...https://www.
3510: 76 65 72 69 73 69 67 6E 2E 63 6F 6D 2F 72 70 61  verisign.com/rpa
3520: 30 34 06 03 55 1D 1F 04 2D 30 2B 30 29 A0 27 A0  04..U...-0+0).'.
3530: 25 86 23 68 74 74 70 3A 2F 2F 63 72 6C 2E 76 65  %.#http://crl.ve
3540: 72 69 73 69 67 6E 2E 63 6F 6D 2F 70 63 61 33 2D  risign.com/pca3-
3550: 67 35 2E 63 72 6C 30 0E 06 03 55 1D 0F 01 01 FF  g5.crl0...U.....
3560: 04 04 03 02 01 06 30 6D 06 08 2B 06 01 05 05 07  ......0m..+.....
3570: 01 0C 04 61 30 5F A1 5D A0 5B 30 59 30 57 30 55  ...a0_.].[0Y0W0U
3580: 16 09 69 6D 61 67 65 2F 67 69 66 30 21 30 1F 30  ..image/gif0!0.0
3590: 07 06 05 2B 0E 03 02 1A 04 14 8F E5 D3 1A 86 AC  ...+............
35a0: 8D 8E 6B C3 CF 80 6A D4 48 18 2C 7B 19 2E 30 25  ..k...j.H.,{..0%
35b0: 16 23 68 74 74 70 3A 2F 2F 6C 6F 67 6F 2E 76 65  .#http://logo.ve
35c0: 72 69 73 69 67 6E 2E 63 6F 6D 2F 76 73 6C 6F 67  risign.com/vslog
35d0: 6F 2E 67 69 66 30 28 06 03 55 1D 11 04 21 30 1F  o.gif0(..U...!0.
35e0: A4 1D 30 1B 31 19 30 17 06 03 55 04 03 13 10 56  ..0.1.0...U....V
35f0: 65 72 69 53 69 67 6E 4D 50 4B 49 2D 32 2D 36 30  eriSignMPKI-2-60
3600: 1D 06 03 55 1D 0E 04 16 04 14 0D 44 5C 16 53 44  ...U.......D\.SD
3610: C1 82 7E 1D 20 AB 25 F4 01 63 D8 BE 79 A5 30 1F  ..~. .%..c..y.0.
3620: 06 03 55 1D 23 04 18 30 16 80 14 7F D3 65 A7 C2  ..U.#..0.....e..
3630: DD EC BB F0 30 09 F3 43 39 FA 02 AF 33 31 33 30  ....0..C9...3130
3640: 0D 06 09 2A 86 48 86 F7 0D 01 01 05 05 00 03 82  ...*.H..........
3650: 01 01 00 0C 83 24 EF DD C3 0C D9 58 9C FE 36 B6  .....$.....X..6.
3660: EB 8A 80 4B D1 A3 F7 9D F3 CC 53 EF 82 9E A3 A1  ...K......S.....
3670: E6 97 C1 58 9D 75 6C E0 1D 1B 4C FA D1 C1 2D 05  ...X.ul...L...-.
3680: C0 EA 6E B2 22 70 55 D9 20 33 40 33 07 C2 65 83  ..n."pU. 3@3..e.
3690: FA 8F 43 37 9B EA 0E 9A 88 B1 D4 01 00 00 00 00  ..C7............
36a0: 37 F4 7A 6D EC D0 18 7D 68 6F 73 74 63 6F 6E 6E  7.zm...}hostconn
36b0: 65 63 74 69 6F 6E 61 63 88 91 D7 01 00 00 00 00  ectionac........
36c0: 00 00 00 00 00 00 00 00 70 B4 D4 01 00 00 00 00  ........p.......
36d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
36e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
36f0: 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3700: FB FF FF FF FF FF FF FF A0 18 E1 01 00 00 00 00  ................
3710: 00 00 00 10 00 00 00 00 B8 0B 47 00 00 00 00 00  ..........G.....
3720: 17 00 00 00 00 00 00 00 58 7F D7 01 00 00 00 00  ........X.......
3730: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3740: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3750: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3760: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3770: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3790: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
37a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
37b0: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF  ................
37c0: 00 00 00 00 FF FF FF FF 98 52 69 00 00 00 00 00  .........Ri.....
37d0: 7C B6 D4 01 00 00 00 00 80 B5 D4 01 00 00 00 00  |...............
37e0: 2E 00 00 00 00 00 00 00 4E B6 D4 01 00 00 00 00  ........N.......
37f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3800: 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3810: FB FF FF FF FF FF FF FF A0 18 E1 01 00 00 00 00  ................
3820: 01 00 00 10 00 00 00 00 14 2B 47 00 00 00 00 00  .........+G.....
3830: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3840: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3850: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3860: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3870: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3890: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
38a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
38b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
38c0: 2F 68 6F 6D 65 2F 77 77 77 72 6F 6F 74 2F 75 73  /home/wwwroot/us
38d0: 65 64 63 61 72 2F 61 70 70 2F 77 65 62 72 6F 6F  edcar/app/webroo
38e0: 74 2F 66 61 76 69 63 6F 6E 2E 69 63 6F 00 2F 68  t/favicon.ico./h
38f0: 6F 6D 65 2F 77 77 77 72 6F 6F 74 2F 75 73 65 64  ome/wwwroot/used
3900: 63 61 72 2F 61 70 70 2F 77 65 62 72 6F 6F 74 2F  car/app/webroot/
3910: 66 61 76 69 63 6F 6E 2E 69 63 6F 00 2F 68 6F 6D  favicon.ico./hom
3920: 65 2F 77 77 77 72 6F 6F 74 2F 75 73 65 64 63 61  e/wwwroot/usedca
3930: 72 2F 61 70 70 2F 77 65 62 72 6F 6F 74 2F 66 61  r/app/webroot/fa
3940: 76 69 63 6F 6E 2E 69 63 6F 00 2F 68 6F 6D 65 2F  vicon.ico./home/
3950: 77 77 77 72 6F 6F 74 2F 75 73 65 64 63 61 72 2F  wwwroot/usedcar/
3960: 61 70 70 2F 77 65 62 72 6F 6F 74 2F 66 61 76 69  app/webroot/favi
3970: 63 6F 6E 2E 69 63 6F 00 29 71 40 00 00 00 00 00  con.ico.)q@.....
3980: F0 B6 D4 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
3990: 09 00 00 00 70 2F 77 65 AA B6 D4 01 00 00 00 00  ....p/we........
39a0: 10 34 E1 01 00 00 00 00 00 00 00 00 00 00 00 00  .4..............
39b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
39c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
39d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
39e0: 58 B7 D4 01 00 00 00 00 00 00 00 00 00 00 00 00  X...............
39f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3aa0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ab0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ac0: 69 6D 61 67 65 2F 78 2D 69 63 6F 6E 00 00 00 00  image/x-icon....
3ad0: B0 F3 E0 01 00 00 00 00 B0 F3 E0 01 00 00 00 00  ................
3ae0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3af0: E0 F2 E0 01 00 00 00 00 C0 F3 E0 01 00 00 00 00  ................
3b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3b10: 00 00 00 00 00 00 00 00 81 00 00 00 00 00 00 00  ................
3b20: 30 B8 D4 01 00 00 00 00 00 00 00 00 00 00 00 00  0...............
3b30: 35 38 2E 32 31 36 2E 32 33 2E 39 34 20 2D 20 2D  58.216.23.94 - -
3b40: 20 5B 32 30 2F 4E 6F 76 2F 32 30 31 35 3A 31 38   [20/Nov/2015:18
3b50: 3A 30 38 3A 35 39 20 2B 30 38 30 30 5D 20 22 48  :08:59 +0800] "H
3b60: 45 41 44 20 2F 66 61 76 69 63 6F 6E 2E 69 63 6F  EAD /favicon.ico
3b70: 20 48 54 54 50 2F 31 2E 30 22 20 32 30 30 20 30   HTTP/1.0" 200 0
3b80: 20 22 2D 22 20 22 2D 22 20 2D 0A 00 00 00 00 00   "-" "-" -......
3b90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ba0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3bb0: 00 00 00 00 00 00 00 00 35 38 31 33 36 31 31 35  ........58136115
3bc0: 2E 32 39 2E 34 31 2E 32 31 37 38 30 00 00 00 00  .29.41.21780....
3bd0: F8 24 D3 01 00 00 00 00 00 00 00 00 00 00 00 00  .$..............
3be0: 10 10 00 00 00 00 00 00 81 00 00 00 00 00 00 00  ................
3bf0: 00 01 00 00 07 7F 00 00 00 F2 D2 01 00 00 00 00  ................
3c00: 04 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00  ................
3c10: 30 F2 D2 01 00 00 00 00 04 00 00 00 04 00 00 00  0...............
3c20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c50: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c60: 80 00 00 00 00 00 00 00 21 00 00 00 00 00 00 00  ........!.......
3c70: 01 00 00 00 00 00 00 00 E0 2A E1 01 00 00 00 00  .........*......
3c80: 20 00 00 00 00 00 00 00 C1 10 00 00 00 00 00 00   ...............
3c90: E8 95 D3 01 00 00 00 00 02 00 00 00 00 00 00 00  ................
3ca0: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3cb0: D0 67 D3 01 00 00 00 00 C8 99 D3 01 00 00 00 00  .g..............
3cc0: 02 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3cd0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3ce0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3cf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3d00: 00 00 00 00 00 00 00 00 98 9C D3 01 00 00 00 00  ................
3d10: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3d20: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3d30: 68 03 D5 01 00 00 00 00 01 00 00 00 00 00 00 00  h...............
3d40: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3d50: D0 67 D3 01 00 00 00 00 48 02 D5 01 00 00 00 00  .g......H.......
3d60: 02 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3d70: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3d80: 50 07 D5 01 00 00 00 00 01 00 00 00 00 00 00 00  P...............
3d90: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3da0: D0 67 D3 01 00 00 00 00 D8 96 D3 01 00 00 00 00  .g..............
3db0: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3dc0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3dd0: F0 F8 D4 01 00 00 00 00 01 00 00 00 00 00 00 00  ................
3de0: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3df0: D0 67 D3 01 00 00 00 00 F8 03 D5 01 00 00 00 00  .g..............
3e00: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3e10: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3e20: A0 F9 D4 01 00 00 00 00 01 00 00 00 00 00 00 00  ................
3e30: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3e40: D0 67 D3 01 00 00 00 00 00 00 00 00 00 00 00 00  .g..............
3e50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3e60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3e70: F0 A2 D3 01 00 00 00 00 01 00 00 00 00 00 00 00  ................
3e80: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3e90: D0 67 D3 01 00 00 00 00 00 00 00 00 00 00 00 00  .g..............
3ea0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3eb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ec0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ed0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ee0: 00 00 00 00 00 00 00 00 60 00 D5 01 00 00 00 00  ........`.......
3ef0: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3f00: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3f10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f60: 30 01 D5 01 00 00 00 00 01 00 00 00 00 00 00 00  0...............
3f70: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3f80: D0 67 D3 01 00 00 00 00 08 FE D4 01 00 00 00 00  .g..............
3f90: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3fa0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3fb0: 40 9A D3 01 00 00 00 00 02 00 00 00 00 00 00 00  @...............
3fc0: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3fd0: D0 67 D3 01 00 00 00 00 70 95 D3 01 00 00 00 00  .g......p.......
3fe0: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3ff0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......

泄露路径:

多执行两次或许有意想不到的的内容！

漏洞证明：

出现OpenSSL hearbleed漏洞的域名：

http://zz.yixin.com/

来张logo

exp利用，泄露网站路径及其他敏感信息

2d90: 50 2F D3 01 00 00 00 00 46 00 00 00 00 00 00 00  P/......F.......
2da0: 5B 2F D3 01 00 00 00 00 A2 2F D3 01 00 00 00 00  [/......./......
2db0: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2dc0: AC 2F D3 01 00 00 00 00 57 00 00 00 00 00 00 00  ./......W.......
2dd0: B7 2F D3 01 00 00 00 00 0F 30 D3 01 00 00 00 00  ./.......0......
2de0: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2df0: 19 30 D3 01 00 00 00 00 46 00 00 00 00 00 00 00  .0......F.......
2e00: 24 30 D3 01 00 00 00 00 6B 30 D3 01 00 00 00 00  $0......k0......
2e10: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2e20: E0 F2 E0 01 00 00 00 00 30 00 00 00 00 00 00 00  ........0.......
2e30: EB F2 E0 01 00 00 00 00 1C F3 E0 01 00 00 00 00  ................
2e40: 2F 66 BE 49 A8 1E 0B 00 0A 00 00 00 00 00 00 00  /f.I............
2e50: 26 F3 E0 01 00 00 00 00 87 00 00 00 00 00 00 00  &...............
2e60: 31 F3 E0 01 00 00 00 00 B9 F3 E0 01 00 00 00 00  1...............
2e70: AD 74 40 F7 58 A1 24 43 F2 76 8B 72 31 96 85 3F  .t@.X.$C.v.r1..?
2e80: 9B 50 2D BA 15 31 72 3F 27 72 DC EB 7E 2E A6 53  .P-..1r?'r..~..S
2e90: 99 F8 1A 4D 4E E6 05 67 39 0A 15 87 EE 18 17 48  ...MN..g9......H
2ea0: 41 81 88 1F 5C E9 07 E3 5D F5 D6 11 0E 7D 39 B5  A...\...]....}9.
2eb0: 09 48 D7 86 FB AD 17 BD C3 CB E2 40 5B CD 2B 41  .H.........@[.+A
2ec0: BC C3 4A 75 1D 6C 5D A5 57 2C B1 D8 B9 8C DB AD  ..Ju.l].W,......
2ed0: 8D A8 E6 C6 59 B2 C4 1A 1D 9F 13 02 03 01 00 01  ....Y...........
2ee0: A3 82 01 68 30 82 01 64 30 1A 06 03 55 1D 11 04  ...h0..d0...U...
2ef0: 13 30 11 82 0F 77 77 77 2E 76 70 6C 75 73 65 72  .0...www.vpluser
2f00: 2E 63 6F 6D 30 09 06 03 55 1D 13 04 02 30 00 30  .com0...U....0.0
2f10: 0E 06 03 55 1D 0F 01 01 FF 04 04 03 02 05 A0 30  ...U...........0
2f20: 2B 06 03 55 1D 1F 04 24 30 22 30 20 A0 1E A0 1C  +..U...$0"0 ....
2f30: 86 1A 68 74 74 70 3A 2F 2F 73 64 2E 73 79 6D 63  ..http://sd.symc
2f40: 62 2E 63 6F 6D 2F 73 64 2E 63 72 6C 30 65 06 03  b.com/sd.crl0e..
2f50: 55 1D 20 04 5E 30 5C 30 5A 06 0A 60 86 48 01 86  U. .^0\0Z..`.H..
2f60: F8 45 01 07 36 30 4C 30 23 06 08 2B 06 01 05 05  .E..60L0#..+....
2f70: 07 02 01 16 17 68 74 74 70 73 3A 2F 2F 64 2E 73  .....https://d.s
2f80: 79 6D 63 62 2E 63 6F 6D 2F 63 70 73 30 25 06 08  ymcb.com/cps0%..
2f90: 2B 06 01 05 05 07 02 02 30 19 16 17 68 74 74 70  +.......0...http
2fa0: 73 3A 2F 2F 64 2E 73 79 6D 63 62 2E 63 6F 6D 2F  s://d.symcb.com/
2fb0: 72 70 61 30 1D 06 03 55 1D 25 04 16 30 14 06 08  rpa0...U.%..0...
2fc0: 2B 06 01 05 05 07 03 01 06 08 2B 06 01 05 05 07  +.........+.....
2fd0: 03 02 30 1F 06 03 55 1D 23 04 18 30 16 80 14 0D  ..0...U.#..0....
2fe0: 44 5C 16 53 44 C1 82 7E 1D 20 AB 25 F4 01 63 D8  D\.SD..~. .%..c.
2ff0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
30f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
31f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3210: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3220: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3230: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3240: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3250: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3260: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3270: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3290: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
32d0: 00 00 00 00 00 00 00 00 31 37 36 2E 31 32 2E 31  ........176.12.1
32e0: 31 36 2E 36 36 20 2D 20 2D 20 5B 32 30 2F 4E 6F  16.66 - - [20/No
32f0: 76 2F 32 30 31 35 3A 31 38 3A 30 39 3A 32 30 20  v/2015:18:09:20
3300: 2B 30 38 30 30 5D 20 22 2D 22 20 34 30 30 20 30  +0800] "-" 400 0
3310: 20 22 2D 22 20 22 2D 22 0A A8 D3 01 00 00 00 00   "-" "-"........
3320: 05 00 00 00 00 00 00 00 1F A8 D3 01 00 00 00 00  ................
3330: 0C B4 D4 01 00 00 00 00 08 B5 27 AB 00 00 00 00  ..........'.....
3340: 06 00 00 00 00 00 00 00 3B A8 D3 01 00 00 00 00  ........;.......
3350: 03 00 00 00 00 00 00 00 42 A8 D3 01 00 00 00 00  ........B.......
3360: 16 B4 D4 01 00 00 00 00 7D 8A D9 2F 88 9F 00 B7  ........}../....
3370: 0F 00 00 00 00 00 00 00 47 A8 D3 01 00 00 00 00  ........G.......
3380: 08 00 00 00 00 00 00 00 57 A8 D3 01 00 00 00 00  ........W.......
3390: 1C B4 D4 01 00 00 00 00 78 24 06 F6 5D 9F 00 B7  ........x$..]...
33a0: 0F 00 00 00 00 00 00 00 61 A8 D3 01 00 00 00 00  ........a.......
33b0: 0C 00 00 00 00 00 00 00 71 A8 D3 01 00 00 00 00  ........q.......
33c0: 2B B4 D4 01 00 00 00 00 DE 7E C4 D1 91 A5 09 00  +........~......
33d0: 0A 00 00 00 00 00 00 00 7F A8 D3 01 00 00 00 00  ................
33e0: 05 00 00 00 00 00 00 00 8A A8 D3 01 00 00 00 00  ................
33f0: 3A B4 D4 01 00 00 00 00 7D 8A D9 2F 88 9F 00 B7  :.......}../....
3400: 0F 00 00 00 00 00 00 00 68 A9 D3 01 00 00 00 00  ........h.......
3410: 0E 00 00 00 00 00 00 00 79 A9 D3 01 00 00 00 00  ........y.......
3420: 3C B4 D4 01 00 00 00 00 64 0A 40 AF 00 00 00 00  <.......d.@.....
3430: 06 00 00 00 00 00 00 00 89 A9 D3 01 00 00 00 00  ................
3440: 77 00 00 00 00 00 00 00 91 A9 D3 01 00 00 00 00  w...............
3450: 4B B4 D4 01 00 00 00 00 03 01 00 01 A3 82 01 DF  K...............
3460: 30 82 01 DB 30 34 06 08 2B 06 01 05 05 07 01 01  0...04..+.......
3470: 04 28 30 26 30 24 06 08 2B 06 01 05 05 07 30 01  .(0&0$..+.....0.
3480: 86 18 68 74 74 70 3A 2F 2F 6F 63 73 70 2E 76 65  ..http://ocsp.ve
3490: 72 69 73 69 67 6E 2E 63 6F 6D 30 12 06 03 55 1D  risign.com0...U.
34a0: 13 01 01 FF 04 08 30 06 01 01 FF 02 01 00 30 70  ......0.......0p
34b0: 06 03 55 1D 20 04 69 30 67 30 65 06 0B 60 86 48  ..U. .i0g0e..`.H
34c0: 01 86 F8 45 01 07 17 03 30 56 30 28 06 08 2B 06  ...E....0V0(..+.
34d0: 01 05 05 07 02 01 16 1C 68 74 74 70 73 3A 2F 2F  ........https://
34e0: 77 77 77 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D  www.verisign.com
34f0: 2F 63 70 73 30 2A 06 08 2B 06 01 05 05 07 02 02  /cps0*..+.......
3500: 30 1E 1A 1C 68 74 74 70 73 3A 2F 2F 77 77 77 2E  0...https://www.
3510: 76 65 72 69 73 69 67 6E 2E 63 6F 6D 2F 72 70 61  verisign.com/rpa
3520: 30 34 06 03 55 1D 1F 04 2D 30 2B 30 29 A0 27 A0  04..U...-0+0).'.
3530: 25 86 23 68 74 74 70 3A 2F 2F 63 72 6C 2E 76 65  %.#http://crl.ve
3540: 72 69 73 69 67 6E 2E 63 6F 6D 2F 70 63 61 33 2D  risign.com/pca3-
3550: 67 35 2E 63 72 6C 30 0E 06 03 55 1D 0F 01 01 FF  g5.crl0...U.....
3560: 04 04 03 02 01 06 30 6D 06 08 2B 06 01 05 05 07  ......0m..+.....
3570: 01 0C 04 61 30 5F A1 5D A0 5B 30 59 30 57 30 55  ...a0_.].[0Y0W0U
3580: 16 09 69 6D 61 67 65 2F 67 69 66 30 21 30 1F 30  ..image/gif0!0.0
3590: 07 06 05 2B 0E 03 02 1A 04 14 8F E5 D3 1A 86 AC  ...+............
35a0: 8D 8E 6B C3 CF 80 6A D4 48 18 2C 7B 19 2E 30 25  ..k...j.H.,{..0%
35b0: 16 23 68 74 74 70 3A 2F 2F 6C 6F 67 6F 2E 76 65  .#http://logo.ve
35c0: 72 69 73 69 67 6E 2E 63 6F 6D 2F 76 73 6C 6F 67  risign.com/vslog
35d0: 6F 2E 67 69 66 30 28 06 03 55 1D 11 04 21 30 1F  o.gif0(..U...!0.
35e0: A4 1D 30 1B 31 19 30 17 06 03 55 04 03 13 10 56  ..0.1.0...U....V
35f0: 65 72 69 53 69 67 6E 4D 50 4B 49 2D 32 2D 36 30  eriSignMPKI-2-60
3600: 1D 06 03 55 1D 0E 04 16 04 14 0D 44 5C 16 53 44  ...U.......D\.SD
3610: C1 82 7E 1D 20 AB 25 F4 01 63 D8 BE 79 A5 30 1F  ..~. .%..c..y.0.
3620: 06 03 55 1D 23 04 18 30 16 80 14 7F D3 65 A7 C2  ..U.#..0.....e..
3630: DD EC BB F0 30 09 F3 43 39 FA 02 AF 33 31 33 30  ....0..C9...3130
3640: 0D 06 09 2A 86 48 86 F7 0D 01 01 05 05 00 03 82  ...*.H..........
3650: 01 01 00 0C 83 24 EF DD C3 0C D9 58 9C FE 36 B6  .....$.....X..6.
3660: EB 8A 80 4B D1 A3 F7 9D F3 CC 53 EF 82 9E A3 A1  ...K......S.....
3670: E6 97 C1 58 9D 75 6C E0 1D 1B 4C FA D1 C1 2D 05  ...X.ul...L...-.
3680: C0 EA 6E B2 22 70 55 D9 20 33 40 33 07 C2 65 83  ..n."pU. 3@3..e.
3690: FA 8F 43 37 9B EA 0E 9A 88 B1 D4 01 00 00 00 00  ..C7............
36a0: 37 F4 7A 6D EC D0 18 7D 68 6F 73 74 63 6F 6E 6E  7.zm...}hostconn
36b0: 65 63 74 69 6F 6E 61 63 88 91 D7 01 00 00 00 00  ectionac........
36c0: 00 00 00 00 00 00 00 00 70 B4 D4 01 00 00 00 00  ........p.......
36d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
36e0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
36f0: 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3700: FB FF FF FF FF FF FF FF A0 18 E1 01 00 00 00 00  ................
3710: 00 00 00 10 00 00 00 00 B8 0B 47 00 00 00 00 00  ..........G.....
3720: 17 00 00 00 00 00 00 00 58 7F D7 01 00 00 00 00  ........X.......
3730: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3740: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3750: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3760: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3770: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3790: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
37a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
37b0: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF  ................
37c0: 00 00 00 00 FF FF FF FF 98 52 69 00 00 00 00 00  .........Ri.....
37d0: 7C B6 D4 01 00 00 00 00 80 B5 D4 01 00 00 00 00  |...............
37e0: 2E 00 00 00 00 00 00 00 4E B6 D4 01 00 00 00 00  ........N.......
37f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3800: 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3810: FB FF FF FF FF FF FF FF A0 18 E1 01 00 00 00 00  ................
3820: 01 00 00 10 00 00 00 00 14 2B 47 00 00 00 00 00  .........+G.....
3830: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3840: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3850: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3860: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3870: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3890: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
38a0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
38b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
38c0: 2F 68 6F 6D 65 2F 77 77 77 72 6F 6F 74 2F 75 73  /home/wwwroot/us
38d0: 65 64 63 61 72 2F 61 70 70 2F 77 65 62 72 6F 6F  edcar/app/webroo
38e0: 74 2F 66 61 76 69 63 6F 6E 2E 69 63 6F 00 2F 68  t/favicon.ico./h
38f0: 6F 6D 65 2F 77 77 77 72 6F 6F 74 2F 75 73 65 64  ome/wwwroot/used
3900: 63 61 72 2F 61 70 70 2F 77 65 62 72 6F 6F 74 2F  car/app/webroot/
3910: 66 61 76 69 63 6F 6E 2E 69 63 6F 00 2F 68 6F 6D  favicon.ico./hom
3920: 65 2F 77 77 77 72 6F 6F 74 2F 75 73 65 64 63 61  e/wwwroot/usedca
3930: 72 2F 61 70 70 2F 77 65 62 72 6F 6F 74 2F 66 61  r/app/webroot/fa
3940: 76 69 63 6F 6E 2E 69 63 6F 00 2F 68 6F 6D 65 2F  vicon.ico./home/
3950: 77 77 77 72 6F 6F 74 2F 75 73 65 64 63 61 72 2F  wwwroot/usedcar/
3960: 61 70 70 2F 77 65 62 72 6F 6F 74 2F 66 61 76 69  app/webroot/favi
3970: 63 6F 6E 2E 69 63 6F 00 29 71 40 00 00 00 00 00  con.ico.)q@.....
3980: F0 B6 D4 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
3990: 09 00 00 00 70 2F 77 65 AA B6 D4 01 00 00 00 00  ....p/we........
39a0: 10 34 E1 01 00 00 00 00 00 00 00 00 00 00 00 00  .4..............
39b0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
39c0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
39d0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
39e0: 58 B7 D4 01 00 00 00 00 00 00 00 00 00 00 00 00  X...............
39f0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3a90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3aa0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ab0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ac0: 69 6D 61 67 65 2F 78 2D 69 63 6F 6E 00 00 00 00  image/x-icon....
3ad0: B0 F3 E0 01 00 00 00 00 B0 F3 E0 01 00 00 00 00  ................
3ae0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3af0: E0 F2 E0 01 00 00 00 00 C0 F3 E0 01 00 00 00 00  ................
3b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3b10: 00 00 00 00 00 00 00 00 81 00 00 00 00 00 00 00  ................
3b20: 30 B8 D4 01 00 00 00 00 00 00 00 00 00 00 00 00  0...............
3b30: 35 38 2E 32 31 36 2E 32 33 2E 39 34 20 2D 20 2D  58.216.23.94 - -
3b40: 20 5B 32 30 2F 4E 6F 76 2F 32 30 31 35 3A 31 38   [20/Nov/2015:18
3b50: 3A 30 38 3A 35 39 20 2B 30 38 30 30 5D 20 22 48  :08:59 +0800] "H
3b60: 45 41 44 20 2F 66 61 76 69 63 6F 6E 2E 69 63 6F  EAD /favicon.ico
3b70: 20 48 54 54 50 2F 31 2E 30 22 20 32 30 30 20 30   HTTP/1.0" 200 0
3b80: 20 22 2D 22 20 22 2D 22 20 2D 0A 00 00 00 00 00   "-" "-" -......
3b90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ba0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3bb0: 00 00 00 00 00 00 00 00 35 38 31 33 36 31 31 35  ........58136115
3bc0: 2E 32 39 2E 34 31 2E 32 31 37 38 30 00 00 00 00  .29.41.21780....
3bd0: F8 24 D3 01 00 00 00 00 00 00 00 00 00 00 00 00  .$..............
3be0: 10 10 00 00 00 00 00 00 81 00 00 00 00 00 00 00  ................
3bf0: 00 01 00 00 07 7F 00 00 00 F2 D2 01 00 00 00 00  ................
3c00: 04 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00  ................
3c10: 30 F2 D2 01 00 00 00 00 04 00 00 00 04 00 00 00  0...............
3c20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c50: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3c60: 80 00 00 00 00 00 00 00 21 00 00 00 00 00 00 00  ........!.......
3c70: 01 00 00 00 00 00 00 00 E0 2A E1 01 00 00 00 00  .........*......
3c80: 20 00 00 00 00 00 00 00 C1 10 00 00 00 00 00 00   ...............
3c90: E8 95 D3 01 00 00 00 00 02 00 00 00 00 00 00 00  ................
3ca0: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3cb0: D0 67 D3 01 00 00 00 00 C8 99 D3 01 00 00 00 00  .g..............
3cc0: 02 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3cd0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3ce0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3cf0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3d00: 00 00 00 00 00 00 00 00 98 9C D3 01 00 00 00 00  ................
3d10: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3d20: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3d30: 68 03 D5 01 00 00 00 00 01 00 00 00 00 00 00 00  h...............
3d40: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3d50: D0 67 D3 01 00 00 00 00 48 02 D5 01 00 00 00 00  .g......H.......
3d60: 02 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3d70: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3d80: 50 07 D5 01 00 00 00 00 01 00 00 00 00 00 00 00  P...............
3d90: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3da0: D0 67 D3 01 00 00 00 00 D8 96 D3 01 00 00 00 00  .g..............
3db0: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3dc0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3dd0: F0 F8 D4 01 00 00 00 00 01 00 00 00 00 00 00 00  ................
3de0: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3df0: D0 67 D3 01 00 00 00 00 F8 03 D5 01 00 00 00 00  .g..............
3e00: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3e10: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3e20: A0 F9 D4 01 00 00 00 00 01 00 00 00 00 00 00 00  ................
3e30: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3e40: D0 67 D3 01 00 00 00 00 00 00 00 00 00 00 00 00  .g..............
3e50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3e60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3e70: F0 A2 D3 01 00 00 00 00 01 00 00 00 00 00 00 00  ................
3e80: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3e90: D0 67 D3 01 00 00 00 00 00 00 00 00 00 00 00 00  .g..............
3ea0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3eb0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ec0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ed0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3ee0: 00 00 00 00 00 00 00 00 60 00 D5 01 00 00 00 00  ........`.......
3ef0: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3f00: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3f10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
3f60: 30 01 D5 01 00 00 00 00 01 00 00 00 00 00 00 00  0...............
3f70: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3f80: D0 67 D3 01 00 00 00 00 08 FE D4 01 00 00 00 00  .g..............
3f90: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3fa0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......
3fb0: 40 9A D3 01 00 00 00 00 02 00 00 00 00 00 00 00  @...............
3fc0: 10 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00  ................
3fd0: D0 67 D3 01 00 00 00 00 70 95 D3 01 00 00 00 00  .g......p.......
3fe0: 01 00 00 00 00 00 00 00 10 00 00 00 00 00 00 00  ................
3ff0: 04 00 00 00 00 00 00 00 D0 67 D3 01 00 00 00 00  .........g......

泄露路径:

多执行两次或许有意想不到的的内容！

修复方案：

补丁

版权声明：转载请注明来源 Aasron@乌云

漏洞回应

厂商回应：

危害等级：中

漏洞Rank：8

确认时间：2015-11-23 10:28

厂商回复：

非常感谢反馈。该网站上只有静态展示页面，无用户信息。我们已将此网站下线。

漏洞评价：

评价

2015-11-22 12:02 | zeracker ( 普通白帽子 | Rank:1077 漏洞数:139 | 多乌云、多机会!微信公众号: id:a301zls ...)

多个了贷字。。就是宜信咩？
2015-11-22 23:59 | Aasron ( 普通白帽子 | Rank:208 漏洞数:57 | 工欲善其事，必先利其器)

@zeracker 不是多了一个贷字，是本来就是旗下业务

WooYun.org

漏洞概要关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0154829

漏洞标题：宜信贷某站存在OpenSSL漏洞（心脏滴血）

相关厂商：宜信

漏洞作者： Aasron

提交时间：2015-11-22 10:02

修复时间：2016-01-11 15:32

公开时间：2016-01-11 15:32

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 help@wooyun.org

Tags标签：无

4人收藏收藏
分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 Aasron@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评价

WooYun.org

漏洞概要 关注数(24) 关注此漏洞

缺陷编号：wooyun-2015-0154829

漏洞标题：宜信贷某站存在OpenSSL漏洞（心脏滴血）

相关厂商：宜信

漏洞作者： Aasron

提交时间：2015-11-22 10:02

修复时间：2016-01-11 15:32

公开时间：2016-01-11 15:32

漏洞类型：命令执行

危害等级：高

自评Rank：15

漏洞状态：厂商已经确认

漏洞来源： http://www.wooyun.org，如有疑问或需要帮助请联系 help@wooyun.org

Tags标签： 无

4人收藏 收藏 var token=""; var id="wooyun-2015-0154829"; $(".btn-fav").click(function(){ CollectBug(id,token); }); 分享漏洞：

漏洞详情

披露状态：

简要描述：

详细说明：

漏洞证明：

修复方案：

版权声明：转载请注明来源 Aasron@乌云

漏洞回应

厂商回应：

厂商回复：

最新状态：

漏洞评价：

评价

漏洞概要关注数(24) 关注此漏洞

Tags标签：无

4人收藏收藏
分享漏洞：