|
|
|
|
| |
| AudioGalaxy is a website devoted to mp3's that offers an mp3 sharing program. This product stores the username and password used by the application in plain text inside a cookie - this enables everyone with access to this cookie to reveal the username and password without much effort. |
| |
Credit:
The information has been provided by altomo.
|
| |
Sometime ago we released an article about AudioGalaxy keeping usernames and passwords in clear text in a file on the users system. Shortly after that, they fixed it, or so it seemed. AudioGalaxy has started storing username and passwords in cookie. A sample cookie entry looks like this:
cookieUsername
USERNAMEHERE
audiogalaxy.com/
0
367281152
29529638
3457234544
29456211
*
cookiePassword
CLEARTEXTPASSHERE
audiogalaxy.com
The obvious problem is that someone exploiting the recent IE bug and stealing cookies could get the cookie and thus have the username and password. A possible scenario would be to steal the username/password, using AudioGalaxy software set an mp3 for download that the attacker has wrapped with a Trojan.
Moreover, since Back orifice does not have to have an .exe extension to infect a victim, the victim would open up an mp3 wanting to enjoy the music but rather they would be infected.
|
|
|
|
|
|
|
|
|
|
