Bink.nu Services

Subscribe to our feed 
Alerts 
 


Order Now!

Windows 7 for XP Professionals
Updating Support Skills from XP to Windows 7
by Bink.nu's Raymond Comvalius

Who is online

There are 88 guest(s) online.

There are 0 member(s) online.

Sponsors



Popular Tags

Bing cashback exploit discovered, Microsoft sends in lawyers
Posted by Sumeeth Evans November 10, 2009 7:54 PM with 1 comment(s)
Filed under:

A Bing cashback vulnerability has been discovered by Samir Meghani of the Bountii Team.

The flaw exists due to a software API oversight that allows users to fake transactions to Bing. Currently, Bing does not detect these faked transactions. The flaw affects both the customer and merchant. According to Samir, in his original posting, "merchants have a few options for reporting, but Bing suggests using a tracking pixel. Basically, the merchant adds a tracking pixel to their order confirmation page, which will report the the transaction details back to Bing." Samir detailed that the process was flawed but didn't pin point exactly how to generate fake transactions.

Continue at Neowin

Send via e-mail | Submit to Digg | Add to Live Favorites
34345 Views

Comments

No Comments
Powered By IIS 7 Powered by ASP.NET
Bink.nu 3.0. Copyright © 1999-2010 Steven Bink. All Rights Reserved.
Microsoft and Microsoft logo's are trademarks of Microsoft Corporation.