MSN password flaw - HeapOverflow Computer Security Community & Forums : Heap Overflow.com

HeapOverflow Computer Security Community & Forums : Heap Overflow.com

		HeapOverflow Computer Security Community & Forums : Heap Overflow.com > Central: General Talks > General Discussions
MSN password flaw

Mark Forums Read

Notices

Welcome to you visitor! This community is mainly dedicated to the computer and security, if you're looking for DFind scanner or others exploits codes you will find them into the Projects section, feel free to start Blogging and remember to always keep an eye and start talking about security Advisories & public Exploits.

General Discussions Discuss anything that does not correspond to any forum section

MSN password flaw

This is a discussion on "MSN password flaw" within the General Discussions part of the Central: General Talks section; I personally recommand to use a really complex MSN password because the authentication system of the actual MSN P9 & 10 is public and the MS servers are running without password bruteforce protections. I mean that anyone with a minimal ...

Reply

#1 (permalink)

Old

05-08-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 28

Posts: 596

Blog Entries: 3

Thanks: 18

Thanked 10 Times in 10 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

MSN password flaw

I personally recommand to use a really complex MSN password because the authentication system of the actual MSN P9 & 10 is public and the MS servers are running without password bruteforce protections.
I mean that anyone with a minimal skill can code a small program able to crack your MSN password , knowing of course your username, most likely an email.
I guess there is nothing publicly or privately coded yet doing this, else MS should update the protocol again, nor to build a ban protection..

I will post something as a white proof.

8)

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote

Sponsor

Advertiser

#2 (permalink)

Old

07-08-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 28

Posts: 596

Blog Entries: 3

Thanks: 18

Thanked 10 Times in 10 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

Code:

C:\IIS\Projects\Exploits\MSN_fuzzer\Release>msn_fuzzer ace@addict3d.org w00t
[.] Resolving.....: messenger.hotmail.com
[.] Resolving.....: messenger.hotmail.com = 65.54.239.210
[.] Connecting....: 65.54.239.210:1863
[.] Connected.....: 65.54.239.210:1863
[.] Connected.....: logging (ace@addict3d.org)
[.] Connected.....: buffer #1
[.] Connected.....: buffer #2
[.] Connected.....: buffer #3
[.] Transferred...: 207.46.6.112:1863
[.] Connected.....: 207.46.6.112:1863
[.] Connected.....: logging (ace@addict3d.org)
[.] Connected.....: buffer #1
[.] Connected.....: buffer #2
[.] Connected.....: buffer #3
[.] Connected.....: challenge string OK
[.] HTTPS.........: subconnection #1 (nexus.passport.com)
[.] HTTPS.........: retrieving login server
[.] HTTPS.........: retrieving login server (success)
[.] HTTPS.........: subconnection #2 (loginnet.passport.com)
[.] HTTPS.........: retrieving hash ticket
[.] HTTPS.........: unauthorized (login/passwd)

This automated in a .bat nor the code updated to guess all passwords possibility can be dangerous for your passeport .net account.

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote

#3 (permalink)

Old

21-08-05

Mouse is offline

Junior Member

Join Date: Jun 2005

Posts: 9

Thanks: 0

Thanked 0 Times in 0 Posts

Rep Power: 7

Mouse is on a distinguished road

Default

MS is always insecure.

Thanks for info.

Reply With Quote

#4 (permalink)

Old

24-08-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 28

Posts: 596

Blog Entries: 3

Thanks: 18

Thanked 10 Times in 10 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

Im sure that this nasty POC will be used to exploit some holes in a near futur:

Code:

[.] Resolving.....: messenger.hotmail.com
[.] Resolving.....: messenger.hotmail.com = 65.54.239.80
[.] Connecting....: 65.54.239.80:1863
[.] Connected.....: 65.54.239.80:1863
[.] Connected.....: logging (***)
[.] Connected.....: buffer #1
[.] Connected.....: buffer #2
[.] Connected.....: buffer #3
[.] Transferred...: 207.46.2.91:1863
[.] Connected.....: 207.46.2.91:1863
[.] Connected.....: logging (***)
[.] Connected.....: buffer #1
[.] Connected.....: buffer #2
[.] Connected.....: buffer #3
[.] Connected.....: challenge string OK
[.] HTTPS.........: subconnection #1 (nexus.passport.com)
[.] HTTPS.........: retrieving login server
[.] HTTPS.........: retrieving login server (success)
[.] HTTPS.........: subconnection #2 (loginnet.passport.com)
[.] HTTPS.........: retrieving hash ticket
[.] HTTPS.........: retrieving hash ticket (success)
[.] Connected.....: buffer #4
[.] Connected.....: login OK
[.] Connected.....: XFR 10 SB 207.46.2.167:1863 CKI 17303832.1124873636.19638
[.] Transferred...: 207.46.2.167:1863 (key:17303832.1124873636.19638)
[.] Connected.....: 207.46.2.167:1863
[.] Connected.....: buffer #1:USR 11 OK *** ***
[.] Connected.....: buffer #2:CAL 12 RINGING 17303832
[.] Connected.....: allowed to MSG
[.] Connected.....: MSG sent, sleeping and closing...

=]

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote

#5 (permalink)

Old

24-08-05

Guest

Posts: n/a

Default

heh
you are thinking to code 0-hour thingz not 0-day , I bet , lol

Reply With Quote

#6 (permalink)

Old

24-08-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 28

Posts: 596

Blog Entries: 3

Thanks: 18

Thanked 10 Times in 10 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

nor maybe someone else with a fresh h0le requesting my help ;P

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote

Sponsor

Advertiser

Reply

Tags
flaw, msn, password

« [req] defeating compiler level buffer overflow protection | Google TALK! »

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
FREEze Greetings 1.0 Remote Password Retrieve Exploit	Heap	Public	0	17-11-08 18:09
MonAlbum 0.87 Upload Shell / Password Grabber Exploit	Heap	Public	0	11-12-07 10:45
Tiny MSN Fuzzer	class101	Applications, Tools & Papers	13	02-10-07 02:34
My MSN fuzzer hot showtime	class101	Security discussions	1	27-05-06 00:56
Ubuntu Breezy 5.10 Installer Password Disclosure	toe	Public	0	13-03-06 12:38

heapoverflow.com - SEOmeter SEO tools

Locations of visitors to this page

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110