Computer Security Is My Interest! » logical flaw http://soroush.secproject.com/blog Soroush Dalili's blog - بلاگ سروش دلیلی Thu, 02 Sep 2010 00:49:31 +0000 en hourly 1 http://wordpress.org/?v=3.0.1 Travian Game Vulnerabilities in progress… http://soroush.secproject.com/blog/2009/11/travian-game-vulnerabilities-in-progress/ http://soroush.secproject.com/blog/2009/11/travian-game-vulnerabilities-in-progress/#comments Sun, 29 Nov 2009 14:54:08 +0000 Soroush Dalili http://soroush.secproject.com/blog/?p=176 3 weeks ago, I sent an email about some small but effective vulnerabilities in Travian online game to its providers. By using these vulnerabilities a player can make several accounts by the same email address (because of a logical flaw), and also, he/she can login to other players’ accounts (by using an XSS vulnerability which is completely proved).

Now, I’m still waiting for their final response as I don’t want to be harmful for them!

]]> http://soroush.secproject.com/blog/2009/11/travian-game-vulnerabilities-in-progress/feed/ 0