Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
If you have some interesting news or want to throw up a link to discuss it, here's the place. Anything is okay, even shameless vendor launches (since that is often applicable to what we work on). 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
whya nasa so insecured?
Date: January 27, 2010 06:30AM

Well friends in the past week me n my friends have found several SQL injection vulnerabilities in NASA's jpl n sbir websites. I have been updating them in my blog. Well its amazing me y they r so unconscious? Well u can check my blog to view all the news :)

http://hackingethics.wordpress.com

Options: ReplyQuote
Re: whya nasa so insecured?
Posted by: TinKode
Date: February 11, 2010 07:25AM

Here isn't any SQLi, only simple 'blocking errors'... and a XSS [you can't do nothing with this]

Options: ReplyQuote
Re: whya nasa so insecured?
Date: February 12, 2010 03:01AM

Well tinkode u r wrong..there r many sql injections..its a SYBASE database server. And also has a stack overflow vulnerability. SQL commands are successfully executing.Heres an injection vector developed by my friend: ')+OR+1=0+OR+57=rand(convert('NUMERIC,'||(crafted Query Here))%252b900000000000000000000000)--

n u say there is no sqli...plz frend check it again..

Options: ReplyQuote
Re: whya nasa so insecured?
Posted by: vinnu
Date: February 13, 2010 12:13AM

Sorry Tinkode, u mistakenly copied and pasted ur SQLScanner's output, be intelligent and do it manually by using ur own brain..."vinnu"

Options: ReplyQuote
Re: whya nasa so insecured?
Posted by: TinKode
Date: February 13, 2010 06:04AM

I don't use any scanner! I'm not a skiddie!

"The password hashes has been grabbed and are in MD5 digest."

I want to see a screen with a hash in md5() from this website www-pds.jpl.nasa.gov

You found only some parameters unsanitised... Only that!

"Check these results of this Error based SQL injection:

http://www-pds.jpl.nasa.gov/tools/phonebook/phonebook.cfm?search_field=%27&node=1%E2%80%B2%22;/*&instnname=-1;%E2%80%93&Submit=Search"

WTF!
1. I don't see any errors of SQL Injection.
2. If it was a error, isn't neccesary to can extract something.

I can show like you: "NASA SQLi"
"http://www-b.jpl.nasa.gov/webcast/odysseylaunch/slides.php?cs=2
http://www2.jpl.nasa.gov/webcast/odysseylaunch/slides.php?cs=3
http://www2.jpl.nasa.gov/surveys/mars/woman1.php

You see, here is a error, so you can do SQLi!
Yeah by THE GREAT HACKER TinKode" no?
NEVER don't say about you: "I'm a HACKER" - (lame)

Show something concret, not shit...

And with XSS - http://tinkode.baywords.com/index.php/2009/12/how-to-find-xss-in-nasa/

But you can't do anything with them!

Options: ReplyQuote
Re: whya nasa so insecured?
Posted by: vinnu
Date: February 13, 2010 06:57AM

Jaijeya

I dont think u know hex code conversion and the printable character range in hex numbers, if u knew it, then u might know that some hex will not be shown in printable form, u need a sniffer for this purpose. Moreover, i think u don't know the abc of Sybase yet.
Moreover, check my topic on NASA posted today here. Test those sites urself.

I don't know, what u understand by "Error based SQLi" or "inference attack". In case of pds u can use "HPP injection" technique to get more functionality.

The above post is not only injection vector and it is not only site in NASa that is vulnerable. prashant have just shown a little bit of them.

Note:I don't want to hinder any work that helps humanity, but to test for security, it my duty..."vinnu"

"Sorry, if it pains, i never intended to cause pain."

Options: ReplyQuote


Sorry, only registered users may post in this forum.