« Paterva releases Maltego GUI KZ3.
TRACE requests via XMLHTTPRequest. »
13 Dec 2007

Hacking AOL

Posted by: Gerry Eisenhaur in Content, tags: , , , ,

I had some free time today and after about 10 minutes of poking around AOL’s web services, I came to the conclusion that their developers have no concept of security. Every AOL domain I looked at had multiple XSS holes on basically every page. They ranged from random subdomains like:

http://autos.aol.com/
http://finance.aol.com/

To more serious domains like:

http://webmail.aol.com/ (need to be logged in)
https://account.login.aol.com/

To the really bad:

https://my.screenname.aol.com/

Access to all of AOL’s web services requires only 2 cookies, SNS_AA from aol.com, and SNS_SKWAT from screenname.aol.com. The only positive thing I ran into is the fact they require you to answer a security question to access account management functions.

Oh! I almost forgot, they also made a feeble attempt at blocking a select number of javascript functions and attributes. For example, this is blocked:

alert(document.cookie)

But this isn’t:

x=document;alert(x.cookie);

These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Slashdot
  • StumbleUpon
  • Fark
  • Furl
  • Reddit
  • Technorati
  • Facebook
  • co.mments
  • De.lirio.us
  • Spurl
  • Live
  • Google
  • blogmarks

This entry was posted on Thursday, December 13th, 2007 at 3:01 pm and is filed under Content. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “Hacking AOL”
  1. Rawr says:
    February 2nd, 2008 at 5:47 pm

    soo how do u get into the aol account w/o answering the security question and no password? i did it before and now i cant remember how…

Leave a Reply