Nil Goldshlager and AMine Cherrai had recently stumbled upon a vulerability in facebook which allowed them to gain acess to any account using the acess_token. Facebook has recently upgraded its security a lot and has fixed a lot of bugs, but well hacking facebook is becoming passion of black hats, but well security researchers like Nil and Amine are also there to prove them wrong. After the discovery of this Oauth Vulerability, Nil wrote on his blog:While I was looking in the Facebook Javascript SDK I found something strange, I found that it uses http://static.ak.facebook.com/connect/xd_arbiter.php?version=21#channel=f876ddf24&origin=http://localhost&channel_path=/oauth/PoC_js/?fb_xd_fragment#xd_sig=f3adf0e04c&” as aredirect_uri and it’s not rejected… So I said let’s use it too!!!"
After Amine discovered this, He sucessfully wrote a POC which redirected the facebook page to another facebook page Along with the Acess_token. But initially there was some problem redirecting it to an external application and thats when Nil suggested Redirecting to a FAcebook Application itself which would later redirect to an external web application, and to their surprise it worked. They soon reported it to facebook and now it is fixed so no use exploiting this to hack facebook, but well facebook always had, will have and who knows maybe has now too some bugs in it. So just looking for them might come in handy.
Posted by R2blog. R2blog auto post for blogspot. Download at http://R2blogger.blogspot.com
0 comments:
Post a Comment