TeamHav0k shows that even search engines can be vulnerable to XSS attacks

Feb 25, 2012 08:21 GMT  ·  By

TeamHav0k, the group of grey hats that proved to be highly skilled in finding cross-site scripting (XSS) vulnerabilities in high-profile sites, have discovered that the websites AOL.com and Ask.com contain security holes that can be taken advantage of by ill-intended attackers.

More specifically, the flaws are located on AOL’s Shopping subdomain, AOL’s main domain, and on the Ask search engine’s maps section. Given the popularity of these sites, their owners would better act on addressing the issues as soon as possible.

The hacker team provided proof on the existence of the flaws and recently they’ve also explained the risks that lie behind such weaknesses.

“They can be used with what is called a ‘XSS Tunnel.’ A XSS Tunnel is where the attacker can then use the victims he/she gets as a botnet and as a SOCKS proxyHypothetically let’s say you were on a XSS Tunnel, the attacker could then link up to you using you as a SOCKS proxy,” they said a few days ago.

“From there the attacker can do what he/she pleases but it will appear as if you are doing the actions yourself.”

XSS in AOL and Ask (3 Images)

XSS in AOL Shop
XSS in AOLXSS in Ask Maps
Open gallery