Hacker with XSS on Google's internal network

A young hacker from the Czech Republic discovered one in one of Google's support applications.

If it was exploited by someone with malicious intent the mistake could allow να υποκλέψουν cookies των υπαλλήλων της Google για εσωτερικές εφαρμογές και να καταλάβουν τους λογαριασμούς τους. Μετά θα μπορούσαν να ξεκινήσουν εξαιρετικά πειστικές απόπειρες ηλεκτρονικού ψαρέματος, που θα τους παραχωρούσε in many other parts of Google's internal network.

The discovered by researcher Thomas Orlita in February 2019. Fixed in mid-April, but published only now.

Vulnerability was one scripting (XSS), και βρέθηκε στην πύλη υποβολής τιμολογίων της Google, ένα δημόσιο domain που ανακατευθύνει η Google τους επιχειρηματικούς of the invoicing platform.

Most cross-site scripting (XSS) vulnerabilities are not considered as dangerous but there are cases that can lead to very serious problems.

One of these cases was the discovery of Orlita. The researcher said that a malicious user could upload his own files to the Google Invoice Submission Portal, via Upload Invoice.hacker

Using a proxy the attacker could prevent the Google Invoice Submission Portal from changing the PDF document (after the submission and validation of the form) and modifying it into HTML, with malicious XSS load.

The malicious document would be stored in Google's billing backend and wait for someone to open it.

“Το XSS τρέχει σε ένα subdomain του googleplex.com και ενώ ο εργαζόμενος είναι συνδεδεμένος, ο εισβολέας μπορεί να έχει on the board του subdomain από όπου είναι δυνατή η και διαχείριση των τιμολογίων”, ανέφερε ο Orlita στο ZDNet.

"Depending on how cookies are configured on googleplex.com, it may be possible to access other internal applications hosted on this domain," the researcher added.

So since most of Google's internal applications are hosted on the googleplex.com domain, this gives attackers a lot of possibilities.

Of course, like most security vulnerabilities XSS, the risk of error depends on the hacker's skill level, and his ability to carry out more complex attacks.

For more technical details you can read Orlita publication.


iGuRu.gr The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).