Slashdot Mirror

← Back to Stories (view on slashdot.org)

Facebook's Biggest Bounty Yet To Hacker Who Found "Keys To the Kingdom"

Posted by timothy on from the yeah-let's-talk dept.

mask.of.sanity writes "Facebook has paid out its largest bug bounty of $33,500 for a serious remote code execution vulnerability which also returned Facebook's etc/passwd. The researcher could change Facebook's use of Gmail as an OpenID provider to a URL he controlled, and then sent a request carrying malicious XML code. The Facebook response included its etc/passwd which contained essential login information such as system administrator data and user IDs. The company quickly patched the flaw and awarded him for the proof of concept remote code execution which he quietly disclosed to them."

3 of 111 comments (clear)

  1. Re:a pittance in ayn rands america. by Chameleon+Man · · Score: 3, Interesting

    So? I just don't understand how comments like yours that bash bug bounties get modded up...Bug bounties are a great thing to happen to the industry, at least for huge internet-based companies like Google and Facebook. No matter how many security engineers or developers you hire, your application will not hit the same level of testing as when it is released to the public. Google and Facebook realize this. Bug bounty programs offer legal incentives for ANYONE to make money, deterring blackhats from exploiting vulnerabilities for malicious purposes. If this guy didn't report this vulnerability to Facebook, a shitstorm comparable to the Target fiasco could have ensued if he had sold it to some other medium.

  2. Re:a pittance in ayn rands america. by KingOfBLASH · · Score: 2, Interesting

    You should reread Ayn Rand. In Atlas Shrugged, where she creates her "perfect society" people pay each other for everything. When Dagny stays over at John Galt's house and needed to use the stove, she gave him $0.05.

    So Ayn would, I think, be happier to see bounties than Facebook saying, hey, give me this info for free.

    And while they probably do have a security team, by crowdsourcing something like this you allow many, many, many more people to look at Facebook and fix it.

  3. Re:/etc/password, not /etc/shadow! by Nimey · · Score: 5, Interesting

    And, let's be honest, /etc/password sounds scary, and is probably the most attention-getting thing this guy could have said to the average person.

    --
    Hail Eris, full of mischief...

    E pluribus sanguinem