[22885] in bugtraq
RE: NON-Secure Credit card info transfer from time.com/pathfinder
daemon@ATHENA.MIT.EDU (jpaquin@landsman.com)
Wed Oct 17 19:44:57 2001
Message-ID: <B1A401FE4E89D21198410008C74C611E237FB5@NTSERVER>
From: jpaquin@landsman.com
To: bugtraq@securityfocus.com
Date: Wed, 17 Oct 2001 17:26:23 -0400
MIME-Version: 1.0
MIME-Version: 1.0
Content-Type: multipart/signed;
protocol="application/x-pkcs7-signature";
micalg=SHA1;
boundary="----=_NextPart_000_006F_01C15730.B766D120"
------=_NextPart_000_006F_01C15730.B766D120
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
> The problem is that while the page
>
> https://www.pathfinder.com/subs/books/forms/td/tdspecialed01.html
>
> itself is secure, as noted by the "https" at the beginning of the URL,
> when you click the "Submit Order" button, the html in that page
> reading:
>
That doesn't seem to be the only problem. Press "submit" on that page
without actually filling anything in, you'll be taken to the actual
order page. Now, check the URL. It appears that upon calling that page
you may substitute anything you wish for any of the values, including
price and shipping cost. Perhaps upon submission they check the price,
they aren't getting my credit card order quite yet.
Perhaps ordering that issue at any price you'd like will get them to fix
it.
Jacques Paquin
------=_NextPart_000_006F_01C15730.B766D120
Content-Type: application/x-pkcs7-signature;
name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="smime.p7s"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------=_NextPart_000_006F_01C15730.B766D120--
