Ola Internal IP Disclosure

Durning the subdomain enumeration, I've got a subdomain which is :
https://vpn-blr-egl.olacabs.com/

Which uses CISCO VPN Service, with different group name of ola such as
1. Developers
2. Ola_VPN



















Cisco Systems VPN Client is a software application for connecting to a virtual private network.
The HTTP request of this headers discloses the internal IP address of ola infra.

























This information can help an attacker to identify other vulnerabilities or it may help during the exploitation of other identified vulnerabilities, apart from that it disclose the information about the IP addressing scheme of the internal ola network.



Thank you 
Dhiraj

3 comments:

  1. Hi! Thank you for the share this information. This is very useful information for online blog review readers. Keep it up such a nice posting like this.
    Pattern Making Software and Tailor App

    ReplyDelete
  2. 192.168.1.254 Router is a default access point that is factory set on some of the popular router models. Mainstream router manufacturers like Linksys, D-link, Belkin etc use 192.168.1.254 as their default router admin pages. For that matter, the whole 192.168.1.x series is IANA reserved for logging in home networks.

    ReplyDelete
  3. Try using Ivacy VPN, I am sure it will get better synced with the IP Disclosure. I have been using it for quite some time now and It's never ceased to amaze me be it any purpose like geo-restrictions, accessing channels, secure downloading, etc. Any content that is inaccessible to you in your region can be accessed by using Ivacy VPN.

    ReplyDelete