HOME     MENU     SEARCH     NEWSLETTER    
NEWS & INFORMATION FOR TECHNOLOGY PURCHASERS. UPDATED 3 MINUTES AGO.
You are here: Home / Best of the Best: Tech Blog Roundup
Close the insights gap
Between you and your customers with Microsoft Dynamics CRM.
See real-time CRM work
Home > Tech Blogs  Flag for objectionable content? Flag for Objectionable Content?
Average Rating:
Rate this article:  
hack a day: Gaining Access to the Oculus Developer Database
2014-09-01 10:31pm -07:00T Visit hack a day


Outtake:

oculus_admin_database_management_eval

One of the hackers over at Bitquark popped a shell on on the Oculus Developer Portal giving him full reign over the special admin panel inside. If he felt so inclined, this allowed him edit users, modify projects, add news articles, edit the dashboard, upload SDK files, and variety of other goodies.

The process started by using a SQL injector called BSQLi to test out parameters, cookies, and headers. Injecting into the header revealed that the Oculus team members were inserting X-Forwarded-For headers directly into the database without proper escape formatting. This got him in the door, and with a little assistance from sqlmap, the database was enumerated, and a pattern was recognized. Oculus passwords that were stored in the DB were heavily hashed. However, the user session variables remained unprotected. A SQL query was quickly built, the latest admin session was promptly extracted, and then the information was plugged in granting access to the portal. A bit more snooping around uncovered that the AJAX eval() preview script wasn’t secured by a CSRF token which could easily be exploited by a malicious hacker.

The findings were then turned into Facebook who paid the guy $15,000 for...

Read More on hack a day...


  © Copyright 2014 hack a day. All rights reserved. If you've enjoyed this content, please visit hack a day to show your appreciation.

Information for Bloggers
 

Latest Blog Entries from hack a day:
THP Hacker Bio: AKA
Tesla Model S Battery Teardown
Sweet Guitar Practice Amp is a Literal Work Of Art
Volumetric Circuits
Homemade E-Cigarette Vaporizer
Latest Tech Blogs from around the Blogosphere:
Content Digitization QA: Recording from the webinar on “No One Left Behind – Let’s Embrace Accessibility Testing”
Content Digitization QA: Recording from the webinar on “No One Left Behind – Let’s Embrace Accessibility Testing”
Content Digitization QA: Recording from the webinar on “No One Left Behind – Let’s Embrace Accessibility Testing”
Content Digitization QA: Recording from the webinar on “No One Left Behind – Let’s Embrace Accessibility Testing”
Content Digitization QA: Recording from the webinar on “No One Left Behind – Let’s Embrace Accessibility Testing”

NEWSFACTOR.COM
NEWSFACTOR NETWORK SITES
NEWSFACTOR SERVICES
© Copyright 2014 NewsFactor Network, Inc. All rights reserved. Member of Accuserve Ad Network.