XSS Worm : Cross Site Scripting & Web 2.0 Security

Application Vulnerability Information Portal

« Independent expert hackers claim Web app bugs are less severe than other vulnerabilities
0day Vulnerabilities For Sale - the new market for weaponized exploits »

Microsoft LIVE vulnerable to XSS Meta Manipulation Attack

Posted by xssworm on November 28th, 2007

The search.live.com search engine index appears to be vulnerable to a form of XSS Meta Manipulation and fraudulent content cross-domain injection attacks.

Links to XSS injected domains are being indexed and followed by the Live spiders, as can be seen in the following example when searching for “XSS Hacking” information:

Example Cross-domain content insertion

http://search.live.com/results.aspx?q=hacking+xss&go=Search

Any user following the link from live.com to the Ethical Hacking expert knowledge site ethicalhacker.net will currently see this output:

example cross-content domain inject

It is unknown at this time if dynamic search engine rankings or other abstract Web 2.0 technologies that rely on indexed search engine results are affected by this vulnerability. It is very possible that the search.live.com spider could be tricked into following and indexing vulnerabilities far more serious than common cross-site javascript alert() injections, but XSSWorm has not yet tested this exploit vector on Live.

Thanks to XSSWorm readers, Ethicalhacker.net has now been informed of the serious XSS injection bug in their installation of Wordpress. It is obvious from the image above that the vulnerability is being exploited in the wild by Blackhat SEO optimizers, malicious crackers and possibly for cross-net spear pharming and targeted phly-phishing attacks. Microsoft has not yet responded to this bug advisory as the vulnerability still appears to be exploitable at time of writing. We will post updates here at xssworm.com as new spider injection holes are discovered.

These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • blinkbits
  • BlinkList
  • blogmarks
  • BlogMemes
  • Book.mark.hu
  • Bumpzee
  • co.mments
  • connotea
  • De.lirio.us
  • DotNetKicks
  • DZone
  • Fark
  • feedmelinks
  • Fleck
  • Furl
  • Gwar
  • Haohao
  • Hemidemi
  • IndiaGram
  • IndianPad
  • Internetmedia
  • kick.ie
  • LinkaGoGo
  • Linkter
  • Ma.gnolia
  • MisterWong
  • MyShare
  • Netscape
  • Netvouz
  • NewsVine
  • PlugIM
  • PopCurrent
  • ppnow
  • RawSugar
  • Rec6
  • Reddit
  • scuttle
  • Shadows
  • Simpy
  • Slashdot
  • Smarking
  • SphereIt
  • Spurl
  • StumbleUpon
  • Taggly
  • TailRank
  • Technorati
  • ThisNext
  • Webride
  • Wists
  • YahooMyWeb

This entry was posted on Wednesday, November 28th, 2007 at 3:11 am and is filed under Blackhat SEO, Content injection, Cross Site Scripting, Fluxing Attacks, Social Network Security, Spider hacking, XSS Meta Manipulation. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

9 Responses to “Microsoft LIVE vulnerable to XSS Meta Manipulation Attack”

  1. Brian Weiss Says:
    November 28th, 2007 at 11:35 pm

    Very interesting,this seems like it could be used to force blog spiders to perform attacks against blogs just by posting links such as

    example.com/index?sqlinjectionattack1
    example.com/index?sqlinjectionattack2
    example.com/index?sqlinjectionattack3

    and letting the spiders do the work

    Brian

  2. Malcor Says:
    November 29th, 2007 at 2:16 am

    I use a cgi proxy for my black spider injections.

    http://www.forumwhore.com/proxy/cgi-bin/nph-proxy.cgi/000000A/http/xssworm.com/?seo=blackhat

  3. deepak Says:
    March 14th, 2008 at 6:24 am

    a href=”" title=”">

  4. Cgi Proxy Says:
    May 16th, 2008 at 9:10 am

    Wow, am I the only one who just does not get this ?

  5. Daniel Craig Says:
    June 14th, 2008 at 4:03 am

    Hi, I was looking around for a while searching for network security administrator and I happened upon this site and your post regarding Microsoft LIVE vulnerable to XSS Meta Manipulation Attack, I will definitely this to my network security administrator bookmarks!

  6. Example Of Malware Says:
    July 6th, 2008 at 6:44 pm

    Hi, what made you want to write on Microsoft LIVE vulnerable to XSS Meta Manipulation Attack? I was wondering, because I have been thinking about this since last Sunday.

  7. digglit Says:
    July 16th, 2008 at 2:04 pm

    what is spider technologyMicrosoft LIVE vulnerable to XSS Meta Manipulation Attack

  8. Free Web Hosting Microsoft Live Says:
    August 6th, 2008 at 10:30 am

    Are people still going to use this, its virtually obsolete now isnt it ?

  9. Tyler Williams Says:
    August 16th, 2008 at 7:40 pm

    Hmm, I\’m not sure if I agree with you fully

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>

« Independent expert hackers claim Web app bugs are less severe than other vulnerabilities
0day Vulnerabilities For Sale - the new market for weaponized exploits »