Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Free Internet JW Marriott Seoul South Korea
Posted by: PaPPy
Date: March 26, 2010 11:14AM

So this hotel uses "DOCOMO interTouch Broadband Access"

If you plugin locally and find a computer's mac that is already purchased time you can set your mac as their's and it will assign their IP to you

then you can navigate to the hotel page, see what their last name and room number from their bill is.

you can then connect via their wireless (using any mac) it asks for a last name and room number, enter the previous and now you can add another computer to their bill

if you are lucky and find someone that has purchased a package with their room, they wont get bumped offline and not billed for the room.

second item, when purchasing days of internet
the price is set via a javascript onclick command

setting to 0, charged the room but with a 0 dollar price (didnt try a negative number)

also there are hidden fields that set your transfer rates (up and down)
and your start and end time and date

so you can purchase a date, but set your end time for a year later.

also the place seems to be running a lot of cisco products that dont seem to have been updated since 2007.

in my scans i came across a guest who had a VNC server running with no password.
other people had music and videos shared

so in the end it was a fun free trip :D

http://www.xssed.com/archive/author=PaPPy/

Options: ReplyQuote


Sorry, only registered users may post in this forum.