all InfoSec news
Unicode Normalization Leads to Account Takeover
March 24, 2023, 2:02 p.m. | ASWIN K V
System Weakness - Medium systemweakness.com
Hello everyone,
I found a flaw that gave me access to user accounts by using Unicode normalization during my security analysis of the web application.
Unicode NormalizationSummary:
A system security vulnerability that allows attackers to perform an account takeover attack.The problem comes as a result of the system’s absence of sufficient Unicode normalization tests.Attackers can take advantage of this flaw to circumvent security measures and obtain unauthorized access to user accounts.
What is a Unicode character?
Unicode is a …account account takeover bug bounty cryptocurrency cybersecurity hacking penetration testing takeover unicode
More from systemweakness.com / System Weakness - Medium
First AD home lab
2 days, 20 hours ago |
systemweakness.com
Clocky | TryHackMe Write-up
3 days, 19 hours ago |
systemweakness.com
Tuesday Morning Threat Report: Apr 30, 2024
3 days, 19 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
Sr Cyber Threat Hunt Researcher
@ Peraton | Beltsville, MD, United States
Lead Consultant, Hydrogeologist
@ WSP | Chattanooga, TN, United States
Senior Security Engineer - Netskope/Proofpoint
@ Sainsbury's | London, London, United Kingdom
Senior Technical Analyst-Network Security
@ Computacenter | Bengaluru Bengaluru (Bengaluru, IN, 560025
Senior DevSecOps Engineer - Clearance Required
@ Logistics Management Institute | Remote, United States
Software Test Automation Manager - Cloud Security
@ Tenable | Israel - Office - CS