Hello Everyone ! Here’s is my write-up BUG “DoS” On Tokopedia
What is DOS?
The Denial of Service (DoS) attack is focused on making a resource (site, application, server) unavailable for the purpose it was designed. There are many ways to make a service unavailable for legitimate users by manipulating network packets, programming, logical, or resources handling vulnerabilities, among others. If a service receives a very large number of requests, it may cease to be available to legitimate users. In the same way, a service may stop if a programming vulnerability is exploited, or the way the service handles resources it uses.
Sometimes the attacker can inject and execute arbitrary code while performing a DoS attack in order to access critical information or execute commands on the server. Denial-of-service attacks significantly degrade the service quality experienced by legitimate users. These attacks introduce large response delays, excessive losses, and service interruptions, resulting in direct impact on availability. Sc : https://owasp.org/www-community/attacks/Denial_of_Service
There is no limit to the number of characters in the issue comments, which allows a DoS attack. The DoS attack affects server-side.
Proof of Concept :
- First login your tokopedia account
- Go to the Tokopedia Chat
- Select Victim Chat And Put The Payload Then Submit (https://drive.google.com/file/d/1KT__2oSUMyaysGbPscH3GaPBAk1hewxO/view)
4. And Stuck Browser Chat Tokopedia / Apps Tokopedia
Remediation:
Implementing input validation
Validating free-form Unicode text
Define the allowed set of characters to be accepted.
Minimum and maximum value range
Timeline :
Report BUG : 14 March 2020
Tokopedia Respon Bug Valid (MEDIUM) : 03 April 2020
Bug Fixed : 15 April 2020
Tokopedia Send Reward ($xxx) : 04 June 2020
Thanks for reading . Happy Hunting .