PLEASE NOTE:

MyNews24 is a user-generated section of News24.com. The stories here come from users.

 
Sony ThePony
 
Comments: 11
Article views: 1541
 
 
Latest Badges:

 
View all Sony ThePony's badges.
 

E toll website giving away your personal info

07 January 2014, 13:14
How to hack the site... Thank god i did not register.

Found this on a forum:
 http://mybroadband.co.za/vb/showthread.php/585998-SANRAL-E-TOLL-WEBSITE-VULNERABILITY?p=11839992


Original article taken from http://tny.cz/ef11db01

------------------------------------------------
SANRAL E-TOLL WEBSITE VULNERABILITY
------------------------------------------------
By Moe1
------------------------------------------------
SECURITY ADVISORY
------------------------
DOCUMENT ID: v1.0
--------------------------
RISK LEVEL : CRITICAL
--------------------------

DISCLAIMER
--------------
The information provided in this document is for educational purposes only. The author is in no way responsible for any misuse of the information. The author insists that such information should never be used for malicious purposes.

INTRODUCTION
------------------
The SANRAL e-Tolls website allows users to register their e-tags online and provides a service where by customers can monitor, pay and track their e-toll accounts. The website contains sensitive customer information such as ID numbers, car number plates, postal addresses, payment methods etc. therefore it is crucial that SANRAL ensure it is secured and user data is protected. The purpose of this report is to display the false sense of security the website portrays by highlighting a simple vulnerability which exist due to a lack of basic web application security logic.

OVERVIEW
------------
When a user registers on the website for the first time the account is put into a “pre-registration” state. The account will remain in a “pre-registration” state until the user confirms the account by clicking on a link provided in a confirmation email. This “pre-registration” confirmation link contains a serious security problem where by it provides the users pin number on the confirmation screen. Using this link an attacker can inject another username into it which would result in the confirmation page containing the pin number of another user.

VULNERABILITY DEMO – HACK AN E-TOLL ACCOUNT IN 5 SECONDS
----------------------------------------------------------------------------

1. Browse to the SANRAL e-toll login page. https://www.sanral.co.za/e-toll/portal/default.aspx
2. Okay so you have the USERNAME and the VERIFICATION CODE that is provided. To get the users PIN all you need to do is browse to the “pre-registration” confirmation link and specify the USERNAME.

http://www.sanral.co.za/e-toll/porta...me=jasonbourne
(Notice the pin of that users account is provided! To view it in clear-text simply view the pages source)

3. Now that you have the pin go back to the login screen, enter username, pin and verification code provided.
4. And there you have it an e-toll account hacked in 5 seconds!

PROOF OF CONCEPT EXPLOIT
---------------------------------
http://tinyurl.com/melw4nw

VIDEO DEMO
---------------
http://www.youtube.com/watch?v=cacn2vRWzF8

CONCLUSION
---------------
It is great that SANRAL informs you to keep your pin safe in their “Terms and conditions” but it’s not very great that they give out your pin to anyone that basically requests for it.

-EOF-

Disclaimer: All articles and letters published on MyNews24 have been independently written by members of News24's community. The views of users published on News24 are therefore their own and do not necessarily represent the views of News24. News24 editors also reserve the right to edit or delete any and all comments received.
 

Read News24’s Comments Policy

24.com publishes all comments posted on articles provided that they adhere to our Comments Policy. Should you wish to report a comment for editorial review, please do so by clicking the 'Report Comment' button to the right of each comment.

Comment on this story
11 comments
Add your comment
Comment 0 characters remaining

Read more from our Users

Africa must break from negative n...

Despite decades of conflict, death and tragedy, coverage of issues in Africa has often been ignored, oversimplified, or excessively focused on limited aspects. Read more...

5 comments 197 views
Submitted by
Amaps
Let the Chuch be the help to the ...

So disappointing how the "church" which claims to be the body of Christ, its not as it should be, its operated like a corporate company. Read more...

51 comments 342 views
Submitted by
MarkH
South Africa: The reality show

I see a tendency – just love that word – developing lately of the regime – another old favourite – to spread far and wide as much confusion as possible, all involving spending my money, of course. Read more...

3 comments 255 views
Submitted by
SkerP
Memories of 2 February 1990

This year marks a quarter century since I matriculated. And, obviously, the same time has elapsed since the unbanning of the ANC. Read more...

5 comments 1003 views
Submitted by
MarkH
Civil war vs civil disturbance

I wrote this article after considering responses to an article on News24 yesterday, also the “attack” on the Bedford Gardens shopping mall, when I found myself pondering the differences between civil disturbance and civil war, and naturally the implications of both. Read more...

2 comments 367 views
Submitted by
Kalos eidos
Yes, there is a global agenda to ...

These words form the motto, mind- set, and goal of the world’s elite humanists, their establishment puppets and their rank and file useful idiots.  Read more...

44 comments 950 views

Jobs in Cape Town [change area]

Property [change area]

Travel - Look, Book, Go!

Kalahari.com - shop online today

Valentine’s Day gifts – 14 Feb!

Gifts to spoil him and her. While stocks last. Shop now!

Games on Sale!

Save up to 60% on selected games. While stocks last. Shop now!

Up to 30% off All Textbooks

Save up to 30% off an extensive range of prescribed textbooks for all major universities and FET colleges. Shop Now!

Save up to 40% on outdoor accessories!

Tents, sleeping, day packs and more. While stocks last. Shop now!

30% off fragrances

Get 30% off fragrances for him and her. While stocks last. Shop now!

OLX Free Classifieds [change area]

 

services

E-mail Alerts The latest headlines in your inbox

RSS feeds News delivered really simply.

Mobile News24 on your mobile or PDA

E-mail Newsletters You choose what you want

News24 on your iPhone Get News24 headlines on your iPhone.

SMS Alerts Get breaking news stories via SMS.

Blogs Your opinion on you, me and everyone.

Calais Website keywords automated by OpenCalais.

 
Interactive Advertising Bureau
 
© 2015 24.com. All rights reserved.
There are new stories on the homepage. Click here to see them.
 
English
Afrikaans
isiZulu

Hello 

Create Profile

Creating your profile will enable you to submit photos and stories to get published on News24.


Please provide a username for your profile page:

This username must be unique, cannot be edited and will be used in the URL to your profile page across the entire 24.com network.

Settings

Location Settings

News24 allows you to edit the display of certain components based on a location. If you wish to personalise the page based on your preferences, please select a location for each component and click "Submit" in order for the changes to take affect.




Facebook Sign-In

Hi News addict,

Join the News24 Community to be involved in breaking the news.

Log in with Facebook to comment and personalise news, weather and listings.