#[+] Title: Telegram - Multiple Vulnerabilities #[+] Product: Telegram #[+] Vendor: http://telegram.org/ #[+] SoftWare Link : http://ift.tt/1DdVxwi / https://my.telegram.org # # Author : Eduardo Alves # E-Mail : edudx1[ at ]gmail[ dot ]com # Website : tempest.com.br/en/ Info: As we know, the Telegram access uses by default is possible only with a token (5 digits). This token could be obtained by: Eavesdropping/desktop notifications/SMS/incoming calls... ################################################################################### #[1] my.telegram.org Denial Of Service The my.telegram.org website behaves inadequately, blocking the users access after 5 consecutive incorrect phone number attempts. ## PoC:
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment