An Interest In:
Web News this Week
- April 12, 2024
- April 11, 2024
- April 10, 2024
- April 9, 2024
- April 8, 2024
- April 7, 2024
- April 6, 2024
Some of Our Sources
- Slashdot
- BoingBoing
- Simplebits
- Just Creative
- Six Revisions
- You The Designer
- Inspiredology
- Reencoded
- Web Resource Source
- TechPowerUp
Help Webnuz
Referal links:
How I Bypassed Netflix Profile Lock?
Hi hackers,
My name is Krishnadev P Melevila, Actually I write regularly on medium blog, and this is my first time in Dev.to, Actually I am a 19 year old self-learned cyber security analyst. To know more about me, Just search Who is Krishnadev P Melevila On Google or Ask your Google Assistant.
The vulnerability is that one can easily bypass Netflix profile lock with response manipulation.
Profile lock means, In Netflix, there is an option to add multiple users to one account and for the multiple accounts they can set up a profile lock for each profile with a 4 digit pin. So when someone login to the main account they are asked Who is watching?
so after clicking profile they need to enter the profile pin to access the browse section. But there is a vulnerability in that feature. Steps to reproduce is given below:
Step 1: Visit https://www.netflix.com/ and login with your account then you will be asked Who is watching? like the above screenshot
Step2: Here all users except guests and children have profile locks. So we are going to bypass this lock.
Step3: To do that we need to know at least one profile pin, say the profile pin of Krishnadev is 1704 then I will enter that pin and intercept the response of that request on burp and copy that whole success response.
HTTP/2 200 OKX-Robots-Tag: noindex, nofollowX-Frame-Options: DENYX-Debug-Tz: GMT+5.50X-Netflix.request.toplevel.uuid: 7d4b8b6b-fed5-44de-973b-1e14de56366f-422157414X-Netflix.execution-Time: 6Content-Type: application/json;charset=UTF-8Date: Mon, 27 Dec 2021 03:48:33 GMTContent-Length: 48Via: 2 i-01d773509d78ec561 (us-west-2)Server: api-prod-website i-00db4a31230d33cecX-Xss-Protection: 1; mode=block; report=https://www.netflix.com/ichnaea/log/freeform/xssreportX-Content-Type-Options: nosniffStrict-Transport-Security: max-age=31536000; includeSubDomainsAccess-Control-Allow-Credentials: trueAccess-Control-Allow-Headers: Authorization,Content-Type,Content-Encoding,Accept,X-Netflix.application.name,X-Netflix.application.version,X-Netflix.esn,X-Netflix.device.type,X-Netflix.certification.version,X-Netflix.request.uuid,X-Netflix.originating.request.uuid,X-Netflix.user.id,X-Netflix.oauth.consumer.key,X-Netflix.oauth.token,X-Netflix.ichnaea.request.type,X-Netflix.Request.Routing,X-NETFLIX-PREAPP-PARTNER-ID, X-NETFLIX-PREAPP-INTEGRITY-VALUE, X-Netflix.Request.Priority,X-Netflix.Retry.Client.Policy,X-Netflix.Client.Request.Name,X-Netflix.Request.Retry.Policy,X-Netflix.Request.Retry.Policy.Default,X-Netflix.request.client.user.guid,X-Netflix.Request.NonJson.Headers,X-Netflix.esnPrefix,X-Netflix.browserName,X-Netflix.browserVersion,X-Netflix.osName,X-Netflix.osVersion,X-Netflix.uiVersion,X-Netflix.clientType,X-NETFLIX-PERSONALIZATION-ID,X-NETFLIX-DET-TOKEN,X-NETFLIX-DET-PARTNER-PAI,X-NETFLIX-RESPONSE-OVERRIDDEN,X-NETFLIX-DET-DEPRECATIONAccess-Control-Expose-Headers: X-Netflix.Retry.Server.Policy,X-Netflix.Response.Tag,X-Netflix.Geo.Info,X-Netflix.request.inbound.identity.changed,Via,X-Netflix.Retry.Server.Policy.retryAfterSeconds,X-Netflix.Retry.Server.Policy.maxRetries,X-Ftl-Error,X-Netflix.uiVersionAccess-Control-Allow-Methods: GET, POSTAccess-Control-Allow-Origin: https://www.netflix.comX-Originating-Url: http://www.netflix.com/api/shakti/v5185b692/profileLockX-Netflix.nfstatus: 1_1Set-Cookie: <REDACTED>X-Netflix.proxy.execution-Time: 16{"codeName":"S-Icarus-6.Alster","success":true}Step4: Now let us bypass the profile lock of any other user, To do that first enter a wrong pin for any user and intercept the response of that request and replace the response with the above success response. and BOOM!! We got access to the Other user profiles without any authentication.
I reported this to Netflix, But they said that:
Hi krishnadevpmelevila,The functionality is only intended as a barrier for children accessing mature content within an account. Local bypass, such as this one, is considered Won't Fix. Your effort is appreciated and we hope that you will continue to research and submit any future security issues you find.But, My doubt is that, Then what is the use of that feature?
Dont forget to follow me on Dev.to and other social media and that's my inspiration to write more!!
My Instagram handle
My Twitter handle
My LinkedIn handle
My Personnel website
Original Link: https://dev.to/krishnadevpmelevila/how-i-bypassed-netflix-profile-lock-1ana
Dev To
An online community for sharing and discovering great ideas, having debates, and making friendsMore About this Source Visit Dev To