<div>Orkut Email Address Disclosure Vulnerability</div> <div> </div> <div>#####################################################################</div> <div>XDisclose Advisory : XD100097<BR>Vulnerability Discovered: November 30th 2006<BR>Advisory Released : December 8th 2006<BR>Credit : Rajesh Sethumadhavan</div> <div>Class : Information Disclosure<BR>Severity : Highly Critical<BR>Solution Status :
Unpatched<BR>Vendor : Google Inc<BR>Vendor Website : <A href="http://www.orkut.com">http://www.orkut.com</A><BR>Affected applications : Orkut Services<BR>Affected Platform : All</div> <div>#####################################################################</div> <div><BR>Overview:<BR>Orkut is an Internet social network service run by Google and named<BR>after its creator, Orkut Büyükkökten. It claims to be designed to<BR>help users meet new friends and maintain existing relationships with<BR>pictures and messages, and establish new ones by reaching out to<BR>people you've never met before.</div> <div> </div> <div>Orkut service is vulnerable to email address disclosure vulnerabilities.<BR>Due to this It is
possible to get email address of any users in orkut.<BR>This is caused due to improper designing of orkut portal.</div> <div><BR>Description:<BR>A remote attacker can get the email address of anyone in the orkut as<BR>demonstrated below. The victim interaction is not required at all.</div> <div> </div> <div>Demonstration:<BR>Note: Demonstration leads to email address information disclosure</div> <div>- Login to your orkut account<BR>- Add any user as your friend (Person you want to get email address)<BR>- Click 'friends' tab<BR>- Click 'open friend requests' tab<BR>- Click edit button the email address of the user will be displayed<BR> as in the screenshot</div> <div>Same way your can find your friends email address also</div> <div><BR>Solution:<BR>Orkut can improve their portal design by hiding the users email address</div> <div><BR>Screenshot:<BR><A
href="http://www.xdisclose.com/images/xdorkutemailid.jpg">http://www.xdisclose.com/images/xdorkutemailid.jpg</A></div> <div><BR>Impact:<BR>Successful exploitation allows email address disclosure.</div> <div><BR>Original Advisory:<BR><A href="http://www.xdisclose.com/XD100097.txt">http://www.xdisclose.com/XD100097.txt</A></div> <div><BR>Credits:<BR>Rajesh Sethumadhavan has been credited with the discovery of this<BR>vulnerability</div> <div><BR>Disclaimer:<BR>This entire document is strictly for educational, testing and<BR>demonstrating purpose only. Modification use and/or publishing this<BR>information is entirely on your own risk. The exploit code is to be<BR>used on your own orkut account. I am not liable for any direct or <BR>indirect damages caused as a result of using the information or<BR>demonstrations provided in any part of this advisory.</div><p> 
<hr size=1>Want to start your own business? Learn how on <a href="http://us.rd.yahoo.com/evt=41244/*http://smallbusiness.yahoo.com/r-index">Yahoo! Small Business.</a>