Select Browser Mobile | Continue

Silic Group Froum Archive - Silic Security

 Forgot Password?
 Join Us
Search
Show: 2428|Reply: 15

[翻译] Flickr漏洞导致SQL注入和远程代码执行

  [Copy URL]
kingjane The user has been deleted
Posted 2015-7-21 16:43:50 | Show all replies |Read Mode
***新人贴:) , 第一次翻译,如有不到之处,请批评指正。***
Yahoo公司的Flickr,是世界上最大的在线图片管理和分享网站之一,最近受到严重WEB应用漏洞的冲击,导致网站数据库和服务器暴露。
Ibrahim Raafat,一个埃及的安全研究员在Flickr Photo Books(5个月之前上线的通过Flickr打印定制的照片簿的新特性)发现了SQL注入漏洞。
他声称发现了两个参数(page_id , items)可以盲注,一个(i.e. order_id) 直接注入,即通过SQL SELECT语句请求得到数据库内容。
一个成功的SQL exp能够得到数据库和Mysql管理员密码。
1.png
此外,Flickr的SQL注入漏洞也帮助了攻击者挖掘远程代码执行漏洞,使用load_file(“/etc/passwd“)函数他成功得到了Flickr服务器上的敏感文件,如下所示:
2.png
除此之外,Ibrahim能够在服务器上写文件,这让他能够上传自定义的代码执行shell
视频演示:(文件过大,放盘里了)
http://pan.baidu.com/s/1mgL4zLA

他把漏洞报告给了Yahoo,所以漏洞已补:)
更新:Yahoo给了他有史以来最高的奖赏$15,000(对比国内一些漏洞奖励平台,简直不忍直视,万恶的资本主义:( )
yahoo-bug-bounty.png


MOLOK The user has been deleted
Posted 2015-7-24 08:48:25 | Show all replies
了不起啊                                                                                                                                      
sharecast The user has been deleted
Posted 2015-7-22 14:18:24 | Show all replies
感谢分享,MARK一下
KingJohn The user has been deleted
Posted 2015-7-22 14:00:05 | Show all replies
kingjane 发表于 2015-7-22 13:52
一起努力吧,,相信会有那一天的^.^

,嗯嗯,^_^
kingjane The user has been deleted
 Author| Posted 2015-7-22 13:52:36 | Show all replies
KingJohn 发表于 2015-7-22 13:48
谢谢分享,涨见识了。好想尝试一下

一起努力吧,,相信会有那一天的^.^
KingJohn The user has been deleted
Posted 2015-7-22 13:48:41 | Show all replies
谢谢分享,涨见识了。好想尝试一下
muzhou72 The user has been deleted
Posted 2015-7-22 00:10:36 | Show all replies
谢谢分享!!继续学习
qhwlpg The user has been deleted
Posted 2015-7-21 21:30:27 | Show all replies
也是醉了,这么简单
小菜 The user has been deleted
Posted 2015-7-21 17:20:38 | Show all replies
学习了沙发
MOLOK The user has been deleted
Posted 2015-7-24 08:49:14 | Show all replies
了不起啊                                                                                                                                                                                   
小宽 The user has been deleted
Posted 2015-7-24 10:41:12 | Show all replies
感谢分享了~~~~~~~~~
凡客 The user has been deleted
Posted 2015-7-24 19:56:28 | Show all replies
谢谢分享 虽然现在还不是很看的懂
ershisijieqi The user has been deleted
Posted 2015-7-30 15:41:56 | Show all replies
谢谢分享。能发现得废了不少功夫。
miss冰 The user has been deleted
Posted 2015-9-21 00:49:54 | Show all replies
注入值 15000刀。。。快10W了。。。天朝多少 搞不好还得进去喝茶
HQD The user has been deleted
Posted 2016-5-24 08:56:38 | Show all replies
geili            
采菇凉的小蘑菇 The user has been deleted
Posted 2016-8-3 10:53:37 | Show all replies
学习了 楼主厉害
You need to login before reply! Login | Join Us

Credit Rules of This Forum

Close

公告Privious /1 Next

小黑屋|手机版|Archiver|Silic Security

GMT+8, 2019-10-16 10:11

© 2001-2014 Silic Corp.

Quick Reply Top Return List