Apple.com XSS « PhishMe


	« Peer Guardian for Internal Penetration Tests Owning the Mobile Workforce @ BlackHat 2008 »


	Apple.com XSS May 23rd, 2008 by Mike Post moved here: http://intrepidusgroup.com/insight/2008/05/applecom-xss/
	Tags: apple, xss This entry was posted on Friday, May 23rd, 2008 at 7:42 am and is filed under Articles, Phishing, Web Apps. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed. 1142 ResponsesApple.com+XSS2008-05-23+12%3A42%3A16Mike to “Apple.com XSS” MikeA says: May 24, 2008 at 8:18 am 4. Here is the kinda far fetched part: you need to hope/pray/socially engineer/somehow get the victim to go through the password change process, and authenticate. I dont think that this is all that far fetched. I know I for one would be concerned to see a password reset email when I know I didn't request that, but I know lots of people that wouldn't. Also, as you need to go through this process to access the site, it's very likely that someone would go through the process anyway (maybe resetting back to their original password) while they remember to do it. What would interest me is not browser ownership via XSS, but if the login/session was for developer.apple.com, or *.apple.com (as G does). That would be a nice vector for CSRF, which with XSS most current mitigation techniques are useless Jash Sayani says: June 25, 2008 at 9:40 pm TAMPERING WITH THE URL…… THIS IS COOL!