The second time reset Oppo mobile website any account password (second change)

Vulnerability SummaryConcern Number (a) follow this vulnerability Defect Number: wooyun-2014-53079 Vulnerability title: Second Reset oppo mobile website any account password (seconds change) related manufacturers: Guangdong Eurasian Mobile Communication Co., Ltd. dire time: 2014-03-07 23:32 public: 2014-04-21 23:33 Vulnerability Type: Design defect/Logic error hazard level: High self-assessment rank:20 vulnerability Status: Vendor has identified vulnerability Source: http://www.wooyun.org

--------------------------------------------------------------------------

Vulnerability Details Disclosure Status:

2014-03-07: Details have been notified to vendors and are awaiting vendor processing
2014-03-10: Manufacturers have confirmed that details are only disclosed to manufacturers
2014-03-20: Details open to core white hat and related field experts
2014-03-30: Details to ordinary white hat public
2014-04-09: Details to practice white hat public
2014-04-21: Details open to the public

Brief description:

Rt

Detailed Description:

First we follow the normal process, send back the password

Go to the mailbox to see the link to retrieve the password

Tested and found

http://account.oppo.com/index.php?q=user/resetPass&username=


只要把username=后面的帐号修改成别人的帐号

只要这个帐号有绑定邮箱，就可以秒改密码

为了证明可行性，那么我直接到社区找个帐号测试一下


就用【客服】-吻川来测试吧，客服同志对不住了


输入用户名找回密码，看出绑定邮箱了，那我们就可以重置了

http://account.oppo.com/index.php?q=user/resetPass&username=【客服】-吻川

这里密码我输的wooyun123


提交一下，显示修改成功

Then I'll log in.
"Customer Service"-Kiss Chuan: wooyun123
Login successfully!

Proof of vulnerability:

See detailed instructions

Fix solution:

This is a serious problem, come on, 20RANK.

Copyright NOTICE: Reprint Please indicate source dire @ Black Cloud Vulnerability Response Vendor response:

Hazard Rating: High

Vulnerability Rank:12

Confirmation Time: 2014-03-10-09:47

Manufacturer Reply:

Repairing in progress

Latest Status:

Not currently

Vulnerability Assessment:

Evaluate the vulnerability information to better feedback the value of information, including the objectivity of the information, the completeness of the content and the availability of learning value

-----------------------------------------------------------------------------------------

Attention to the vulnerability is to remind us that the vast number of programmers programming attention, enhance security awareness, promote the security of the Internet.

Never use for illegal use!

This article comes from dark clouds, the original address: http://www.wooyun.org/bugs/wooyun-2014-053079