1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Orkut hacking: New XSS vuln. revealed

Discussion in 'Ethical hacking' started by indiansword, Apr 27, 2009.

  1. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    Here is a new XSS vulnerability found for "orkut blogs". With the exploitation of this vulnerability an attacker can steal the login credentials of the victim. I have posted the screenshot of one.

    Heres the link of 1 INJECTED XSS BLOG:

    IMPORTANT NOTE: If you visit this profile then your login credentials would be stolen. So make sure that u create a new fake profile and then check this out.

    Link:- http://www.orkut.com/Main#Application.aspx?uid=2377494914036893288&appId=675426251494

    Screen shot is attached

    Credits to:- Pierre Gardenat
     

    Attached Files:

  2. namesis

    namesis New Member

    Joined:
    Apr 28, 2009
    Messages:
    16
    Likes Received:
    1
    Trophy Points:
    0
    cool find whoeva did
     
  3. fourthdimension

    fourthdimension New Member

    Joined:
    Jan 8, 2009
    Messages:
    144
    Likes Received:
    11
    Trophy Points:
    0
    Home Page:
    Is this original?
     
  4. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    what do u mean by original?
     
  5. fourthdimension

    fourthdimension New Member

    Joined:
    Jan 8, 2009
    Messages:
    144
    Likes Received:
    11
    Trophy Points:
    0
    Home Page:
    I just meant is this your exploit, or did you find it somewhere?
     
  6. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    Credits to:- Pierre Gardenat

    i have written that in the first post itself
     
  7. fourthdimension

    fourthdimension New Member

    Joined:
    Jan 8, 2009
    Messages:
    144
    Likes Received:
    11
    Trophy Points:
    0
    Home Page:
    Oh. lol sorry, for some reason I thought that was the title of the image or something :p
     
  8. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    I checked it and it works.
     
  9. overdozed

    overdozed New Member

    Joined:
    Jul 3, 2009
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    0
    can any 1 xplain me hw did this worked?

    dnt mind 4 dis question,..
    i m new...
     
  10. naimish

    naimish New Member

    Joined:
    Jun 29, 2009
    Messages:
    1,046
    Likes Received:
    18
    Trophy Points:
    0
    Occupation:
    Software Engineer
    Location:
    On Earth
    @ indiansword

    Can you please share it ?
     
  11. mayjune

    mayjune New Member

    Joined:
    Jun 14, 2009
    Messages:
    817
    Likes Received:
    33
    Trophy Points:
    0
    Occupation:
    Student
    Location:
    Pune,Delhi
    I agree, how does it work?? whats the idea?
     
  12. P455w0rd_Cr4kz

    P455w0rd_Cr4kz New Member

    Joined:
    Jan 12, 2007
    Messages:
    199
    Likes Received:
    12
    Trophy Points:
    0
    Location:
    H3LL
    Home Page:
    Obviously,the whole point of this exploit is to have your victim visiting the exploited page and steale their cookie session.
    It will work perfectly if you send them a convincing message with an eleborated and crafted page link.
    I won't o it,but there are plenty websites that inspect source codes from websites for you to view. Look at the source code and check it out.
     
  13. mayjune

    mayjune New Member

    Joined:
    Jun 14, 2009
    Messages:
    817
    Likes Received:
    33
    Trophy Points:
    0
    Occupation:
    Student
    Location:
    Pune,Delhi
    what if cookie is disabled?
     
  14. P455w0rd_Cr4kz

    P455w0rd_Cr4kz New Member

    Joined:
    Jan 12, 2007
    Messages:
    199
    Likes Received:
    12
    Trophy Points:
    0
    Location:
    H3LL
    Home Page:
    if they're disabled then you're out of luck. However,it all will depend on the site. Make a search about https/http cookies and regular session cookies,big diference between the two of them.
     
  15. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    I dont think cookies would be disabled for google. Entire google works on cookies. All the google sites work on cookies and they share the same session i.e. google, gmail, orkut etc.
     

Share This Page