RSA Irony - Vulnerability Found #RSA #RSAC [Fixed]

It's the RSA Conference season again and many are booking flights to San Francisco as we speak to gather and discuss this year's information security issues that overwhelm technology businesses worldwide. In the midst of signing up, Secure Science discovered a concern within the RSA website itself that lends itself to a very trivial malware attack vector. Similar to the "Twitter Worm" lookups that pointed to many rogue AV (scareware) sites, those looking up RSA Conference could be easily turned to the right site, yet accompanied with abuse.

A post-login redirect is used by the single-sign-on service for logins and registration can be misused to redirect users to malicious websites. This redirect occurs after the user has signed in, enabling cross-site request forgery within the RSA site itself, or the site could load exploits at the victim's browser, injecting bank or scareware trojans onto their computers.

This type of attack might be ideal for malicious hackers as it provides ample opportunity to strike revenge at a popular white-hat conference and the white-hat personalities that may attend.

A demonstration of the exploit: This will take you to twitter.com/xssexploits after a login has been submitted:

https://sso.rsaconference.com/sso/LogIn.jsp?CT_ORIG_URL=http://www.twitter.com/xssexploits&ct_orig_uri=/xssexploits