Microsoft

Microsoft Live Online Service OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

admin May 15, 2014 0

Microsoft Live Online Service OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect) (1) Domain: live.com (2) Vulnerability Description: Live web application has a computer security problem. Hacker can exploit it by Covert Redirect cyber attacks. The vulnerabilities can be attacked without user login. Tests were performed on Microsoft …

Categories Covert Redirect Vulnerability, Website Testing Tags 0day-exploit, computer-engineering, Covert Redirects, Cyber Bugs, Hacking, IEEE, Information Leakage, Internet News, IT Topics, jing wang, justqdjing, Live.com, Microsoft, OAuth 2.0, Online Service, Open Redirect, Security Bugs, Vulnerabilities, Web Research, whitehat

OAuth and OpenID Users Threatened by New Security Flaw, Covert Redirect

Blackhole May 4, 2014 0

A serious flaw in two widely used security standards could give anyone access to your account information at Google, Microsoft, Facebook, Twitter and many other online services. The flaw, dubbed “Covert Redirect” by its discoverer, exists in two open-source session-authorization protocols, OAuth 2.0 and OpenID. Both standards are employed across the Internet to …

Categories Computer Security, Covert Redirect Vulnerability, Phishing, Privilege Escalation Tags 0day Flaw, by New Security, Cnet, Covert Redirect, Exploit Attack, Facebook, Google, hacker-prevention, IT Technology, jing wang, Linkedin, Microsoft, OAuth 2.0, Open Source, OpenID, Phishing Model, Tomsguid, Users Threat, Web News, Yahoo

Tetraph Blog

-Something Small, Something Trivial, Something Daily ...

Microsoft

Microsoft Live Online Service OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

OAuth and OpenID Users Threatened by New Security Flaw, Covert Redirect