| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 11 Jan 2007 23:22:22 -0600
From: Kurt Grutzmacher <grutz@...gojango.net>
To: websecurity@...appsec.org, full-disclosure@...ts.grok.org.uk
Subject: Your free MacWorld Platinum Pass! Some hacking
required.
Overview: IDG's website for conference registration performs client-side
validation of "Priority Codes" before being processed by the
server.
Issue: These codes are simple MD5 hashes included in the javascript.
In the case of MacWorldExpo, one of these codes allowed for heavily
discounted "Platinum Pass", valued at $1,695.
Result: The "Premier Pass" permits full access to the conference including
the Power Tools series, MacIT Conference, Users Conference, Market
Symposium, Keynote (special line and seating so you will be able to
see it), Free Lunch, etc.
Total cost after hack: $0.00
Details are blogged at:
http://grutztopia.jingojango.net/2007/01/your-free-macworld-expo-platinum-pass_11.html
This issue has been resolved by IDG and the conference is over. I wasn't
the only one who found it, just the only one who told them.
--
..:[ grutz at jingojango dot net ]:..
GPG fingerprint: 5FD6 A27D 63DB 3319 140F B3FB EC95 2A03 8CB3 ECB4
"There's just no amusing way to say, 'I have a CISSP'."
Content of type "application/pgp-signature" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists