亚马逊隐蔽重定向(Covert Redirect)计算机网络安全漏洞基于脸书
Amazon Covert Redirect Security Vulnerability Based on Facebook Simulate Attacks
“Amazon.com, Inc. (/ˈæməzɒn/ or /ˈæməzən/) is an American electronic commerce company with headquarters in Seattle, Washington. It is the largest Internet-based retailer in the United States. Amazon.com started as an online bookstore, but soon diversified, selling DVDs, VHSs, CDs, video and MP3 downloads/streaming, software, video games, electronics, apparel, furniture, food, toys, and jewelry. The company also produces consumer electronics—notably, Amazon Kindle e-book readers, Fire tablets, Fire TV and Fire Phone — and is a major provider of cloud computing services.” (Wikipedia)
Discover:
Wang Jing, School of Physical and Mathematical Sciences (SPMS), Nanyang Technological University (NTU), Singapore.
http://www.tetraph.com/wangjing/
The vulnerability exists at “redirect.html?” page with “&location” parameter.
The vulnerability can be attacked without user login. Tests were performed on Safari 6.1.6 in Mac OS X 10.7.5, IE 8 in Windows 7, Chromium version 37.0.2062.120 in Ubuntu 12.04 (281580) (64-bit).
More Detail:
http://tetraph.com/covert_redirect/
POC Videos:
https://www.youtube.com/watch?v=ss3ALnvU63w&feature=youtu.be
https://www.youtube.com/watch?v=f4W63YXnbIk
Blog Details:
http://tetraph.blogspot.com/2014/05/amazon-covert-redirect-vulnerability.html
http://securityrelated.blogspot.com/2015/01/amazon-covert-redirect-security.html