Authentication bypass on Airbnb via OAuth tokens theft

TL;DR: Login CSRF in combination with an HTTP Referer header-based open redirect in Airbnb’s OAuth login flow, could be abused to steal OAuth access tokens of all Airbnb identity providers and eventually authenticate as the victim on Airbnb’s website and… Continue Reading →

Print Share Comment Cite Upload Translate

APA

() » Authentication bypass on Airbnb via OAuth tokens theft. Retrieved from https://www.truth.cx/2017/06/22/authentication-bypass-on-airbnb-via-oauth-tokens-theft/.

MLA

" » Authentication bypass on Airbnb via OAuth tokens theft." - , https://www.truth.cx/2017/06/22/authentication-bypass-on-airbnb-via-oauth-tokens-theft/

HARVARD

» Authentication bypass on Airbnb via OAuth tokens theft., viewed ,

VANCOUVER

- » Authentication bypass on Airbnb via OAuth tokens theft. [Internet]. [Accessed ]. Available from: https://www.truth.cx/2017/06/22/authentication-bypass-on-airbnb-via-oauth-tokens-theft/

CHICAGO

" » Authentication bypass on Airbnb via OAuth tokens theft." - Accessed . https://www.truth.cx/2017/06/22/authentication-bypass-on-airbnb-via-oauth-tokens-theft/

IEEE

" » Authentication bypass on Airbnb via OAuth tokens theft." [Online]. Available: https://www.truth.cx/2017/06/22/authentication-bypass-on-airbnb-via-oauth-tokens-theft/. [Accessed: ]

Select a language: Afrikaans Albanian Arabic Armenian Basque Bengali Bulgarian Catalan Cambodian Chinese (Mandarin) Croatian Czech Danish Dutch English Estonian Fiji Finnish French Georgian German Greek Gujarati Hebrew Hindi Hungarian Icelandic Indonesian Irish Italian Japanese Javanese Korean Latin Latvian Lithuanian Macedonian Malay Malayalam Maltese Maori Marathi Mongolian Nepali Norwegian Persian Polish Portuguese Punjabi Quechua Romanian Russian Samoan Serbian Slovak Slovenian Spanish Swahili Swedish Tamil Tatar Telugu Thai Tibetan Tonga Turkish Ukrainian Urdu Uzbek Vietnamese Welsh Xhosa TL;DR: Login CSRF in combination with an HTTP Referer header-based open redirect in Airbnb’s OAuth login flow, could be abused to steal OAuth access tokens of all Airbnb identity providers and eventually authenticate as the victim on Airbnb’s website and… <a href="https://www.arneswinnen.net/2017/06/authentication-bypass-on-airbnb-via-oauth-tokens-theft/" class="more-link">Continue Reading <span class="meta-nav">→</span></a> First name:

Last name: