HackerTop
https://hackertop.org/

Apple Icloud Reset Password Bypass Vulnerability
https://hackertop.org/viewtopic.php?f=5&t=21
Page 1 of 1

Author:  Lyon [ Sun Jul 24, 2016 12:55 pm ]
Post subject:  Apple Icloud Reset Password Bypass Vulnerability

/* Date: 2013/02/03 */

/*
* Copyright (C) 2014 HackerTop
*
*/

Description:
Apple icloud id forget your password,Forgot Password
Not defined parameter values ​​for security check,Just know each other's birthday, you can successfully reset Apple id password,
you can bypass the password question, reset apple id password.

Step one:

Open the icloud.com
Attachment:
one.jpg
one.jpg [ 22.11 KiB | Viewed 35095 times ]


Step two:

In the page, Click Forgot ID or password.

Input you have to reset Apple id.

Attachment:
two.jpg
two.jpg [ 7.11 KiB | Viewed 35095 times ]



Step three:

Select answer your security question,

Attachment:
three.jpg
three.jpg [ 10.97 KiB | Viewed 35095 times ]


Step four:

Attachment:
fourth.jpg
fourth.jpg [ 7.83 KiB | Viewed 35095 times ]


Input Date of birth,Activated iphone,

Will be prompted to input,

Right now, We opened burpsiute Ethereal interception,Then the next step.

Step five:

Attachment:
five.jpg
five.jpg [ 32.25 KiB | Viewed 35095 times ]

Red box plus information,Is security items, we directly get rid of this parameter, As:

Attachment:
six.jpg
six.jpg [ 29.42 KiB | Viewed 35095 times ]


Then click Forward to submit revised information,Direct questions to bypass password authentication,

Successfully entered the password reset page.


Attachment:
seven.jpg
seven.jpg [ 17.74 KiB | Viewed 35095 times ]




End!

Page 1 of 1 All times are UTC
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/