Multiple Intel Vulnerabilities-Adesh Kolte

Hello Guyzz

I am Adesh Nandkishor Kolte (An Independent Cyber Security Resercher From India)

First Vulnerability:

Vulnerability Type: Open Redirection

Vulnerable URL:

https://communities.intel.com/terms-and-conditions!input.jspa?url=http://evilsite.com

https://<private>.intel.com/external-link.jspa?url=http://evilsite.com

Summary: An open redirect is an application that takes a parameter and redirects a user to the parameter value without any validation. This vulnerability is used in phishing attacks to get users to visit malicious sites without realizing it.

In the URL described above the parameter url= is vulnerable to open redirect. An attacker is able to provide a custom URL where the victim will be redirected. An attacker can impersonate his malicious URL as Intel’s

Second Vulnerability:

Vulnerabiltiy Type:Directory Listing

Vulnerable Url:

Index of /public/e2fsprogs/1.41.90.wc2/x86_64/el6

This software is subject to the U.S. Export Administration Regulations and other U.S. law, and may not be exported or…

downloads.hpdd.intel.com

For Reporting This Vulnerabilities Intel Gave Certificate Of Appreciation

Multiple Intel Vulnerabilities-Adesh Kolte

Index of /public/e2fsprogs/1.41.90.wc2/x86_64/el6

This software is subject to the U.S. Export Administration Regulations and other U.S. law, and may not be exported or…

More from Adesh Kolte

Get the Medium app

Adesh Kolte