Tuesday, October 2, 2007

Sessionn ID Manipulation?????

So today is the last day for Phase 1 for my application penetest. Well, its always funny because its always during the last day that i will find something. In my previous posts, i was saying that the application is very secure. However, i found some session IDs manipulation that allows an attacker to impersonate someone. Well although its not high risk, but think of this situation. Lets say you and your friend is at a school compound or somewhere with network access and suddenly your friend is checking his account. With the mindset of a hacker, you know that by manipulating the session ID will allow you to gain access to his account, while he says that he wants to go to the toilet and forgets to logout, you quickly grab his session id and then change his password. From there on, you can monitor his account's transaction and status and moreover you can transfer money to your own account. I mean there is too many possibility. This is just one of the scenarios. You can let your imagination run wild and can come up with more evil stuff. However i just want to point out that since that application is already so secure, why not take another step to tighten this hole? Agree?????

The Hacka Man

6 comments:

Unknown said...

So the application allows you to change the password without having to enter the old one?

Anonymous said...

The application allows me to change the password without entering the old one.

Hackathology

Anonymous said...

Hi
Here is good paper on similar issue hope this will be helpful for your attack;)

http://www.it-observer.com/pdf/dl/concepts_against_mitb_attacks.pdf

Mitmwatcher

Anonymous said...

hey mitmwatcher, thank you for that paper. I need that to prove to the damn customer. They take it lightly.

hackathology

Anonymous said...

What a great resource!

pharmacy said...

It is pretty impress the people can do something like to hide behind another person ID.