IT 技术

IT 计算机信息网络安全技术:

Web Technology:


谷雨 醉心 冬小麦:

亚马逊隐蔽重定向(Covert Redirect)计算机网络安全漏洞基于脸书

Amazon Covert Redirect Security Vulnerability Based on Facebook Simulate Attacks         

“, Inc. (/ˈæməzɒn/ or /ˈæməzən/) is an American electronic commerce company with headquarters in Seattle, Washington. It is the largest Internet-based retailer in the United States. started as an online bookstore, but soon diversified, selling DVDs, VHSs, CDs, video and MP3 downloads/streaming, software, video games, electronics, apparel, furniture, food, toys, and jewelry. The company also produces consumer electronics—notably, Amazon Kindle e-book readers, Fire tablets, Fire TV and Fire Phone — and is a major provider of cloud computing services.” (Wikipedia)


Wang Jing, School of Physical and Mathematical Sciences (SPMS), Nanyang Technological University (NTU), Singapore.

The vulnerability exists at “redirect.html?” page with “&location” parameter.

The vulnerability can be attacked without user login. Tests were performed on Safari 6.1.6 in Mac OS X 10.7.5, IE 8 in Windows 7, Chromium version 37.0.2062.120 in Ubuntu 12.04 (281580) (64-bit).

More Detail:

POC Videos:

Blog Details:

热度 ( 19 )
  1. 计算机网络技术IT 计算机信息网络安全技术 转载了此视频  到 IT 计算机&信息网络 技术
  2. 琐事,日常之事计算机网络技术 转载了此视频  到 IT 计算机信息网络安全技术
  3. 琐事,日常之事乡土情深 转载了此视频  到 夜如墨
  4. 计算机网络技术點滴的記錄 转载了此视频
  5. 琐事,日常之事谷雨 醉心 冬小麦 转载了此视频
  6. 白帽子安全點滴的記錄 转载了此视频  到 湛天雲海碧波影
  7. 白帽子安全點滴的記錄 转载了此视频  到 文豆 & 文库
  8. 白帽子安全谷雨 醉心 冬小麦 转载了此视频

© IT 计算机&信息网络 技术 | Powered by LOFTER