- Feb 4, 2016
- 2,520
.... a quote from the article above:
McDonald's website spewing a user's password in cleartext (Source: Tijme Gommers )
Security researcher Tijme Gommers has discovered and publicly disclosed an issue in the McDonald's official website that allows an attacker to gain access to a user's password in cleartext.
The issue, a cross-site scripting (XSS) bug described in finer detail on his blog, allows an attacker to craft a malicious link, which when clicked by a target, escapes a local sandbox, captures a local cookie, extracts password data from that file, decrypts it and then sends it to the attacker.
According to Gommers, this is possible because McDonald's stores password information in a cookie file, information which it protects using the same key and initialization vector for all users.
This flaw allows an attacker to create a universal system to decrypt any password for any user if he manages to access the user's cookie file.
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072){kind=avatar}
