Yahoo Mail Authentication Bypass

**ddlmail** · 08-01-2006, 04:14 AM

Yahoo Multiple Vulnerabilities

Various Yahoo! services are vulnerable to authentication bypass, session
binding, weak cookie encoding, cross-site scripting file inclusion and url
redirection vulnerabilities, which is caused due to improper validation of
user-supplied inputs.

*. Authentication Bypass and Session Binding Vulnerability.
A malicious user can log on to the yahoo without submitting the username
and password by constructing a malicious URL using cookies.
2. Cookie Encoding Security Weakness
*. Cross-Site Scripting.
4. URL redirection.

Full Story in [URL="http://www.xdisclose.com"]http://www.xdisclose.com[/URL]

_________________________________________________________________

**Ezekiel** · 08-01-2006, 05:38 AM

This is a serious threat to yahoo users' privacy, just click this link and you bypass any sort of authentication to get into a test account:

[url]http://msg.edit.**********/config/reset_cookies?&.y=Y=v=*%26n=0kvgvgv*qlf**%26l=i42.j4ij/o&.t=T=sk=DAAq25kB4yjEbw%26d=c2wBTlRVMUFUSTFNVEl4TXpnNU5EVS0BYQFRQUUBdGlwAVNQZHhvQgF6egExemt6RUJnV 0E-&.done=http%*a//mail.**********[/url]

Now why do I know this (interesting) thread will get NO replies, while the 'password hacking requests here' will get 20 more posts from retarded kids.

**toast** · 08-01-2006, 12:26 PM

Oh shit, it worked. Wow...I didnt realize it, till I did it...

This is sad....

T

**icedcold** · 08-17-2006, 03:04 PM

Wow...thats crazy....man....

**hack_victim100** · 08-18-2006, 12:03 AM

Hey Mike,

When I clicked on the link it just gave me a login page. What exactly did u mean by bypass of authentication process.

Please let me know.

Thanks.

Hack Victim

**hack_victim100** · 08-18-2006, 01:30 PM

Hey Toast and Icecold,

Please let me know what did u mean when u said it worked. for me its just giving me a login page. I need to know this as it might help me regain access to my hacked account. Please let me know.

Thanks.

D

**Ezekiel** · 08-19-2006, 04:44 AM

Originally Posted by hack_victim*00

Hey Mike,

When I clicked on the link it just gave me a login page. What exactly did u mean by bypass of authentication process.

Please let me know.

Thanks.

Hack Victim

They probably fixed it now. But it only logged into the account because the user's encrypted password or whatever was included in the URL. You are not gonna get into someone's account with this, even if they didn't fix it.

**toast** · 08-21-2006, 03:13 PM

I was wondering if it is possible to mimic the little security lock when making a fake login page. You know the off color url box and the lock….
I was thinking it is possible but I’m not sure.

~Thanks~ Toast

Thread: Yahoo Mail Authentication Bypass

Thread Tools

Search Thread

Display

Hybrid View

Yahoo Mail Authentication Bypass

What does it exactly mean

What does it exactly mean

Similar Threads

Yahoo ID stolen by fake yahoo page

does anyone know a way to bypass superscout?

yahoo.co.in mail account not working...pls help

SYMPA send anonymous mail to HOTMAIL & YAHOO

Posting Permissions