:: Deepquest ::

The world of IT security still amaze me every day, because you always expect the largest companies to be ultra secure with data centers in bunkers, private links between branch offices. But the really is that you always found a dummy admin.

The best example is American Airline (man that’s a 2 letters domain aa.com!) suffering from major slq injections. Check the following screenshots.

That’s a nasty old school security problem, I think the first ones were around 2000. The transversal bug allow to browse most of the system files: logs, admin password files and more.

The funniest part is that American Airlines have also a firewall and probably a Intrusion Detection System: http://www.aa.com.pe/aa/i18nForward.do?p=../../../../../../../../../../../../../../../../../../../../../../etc/passwd

The link will either lead you to the file posted previously or to this one:

Loks very very strong security  “Cannot serve URLs with ..’s in them”, just reload the page and the target file will show up…

Amazing world of IT security, everyday we have something new to discover.