Back to directory
WRITEUP #4353

You can’t stop me. MS Teams session hijacking and bypass

OtherInsecure storage of sensitive information
by@FlyingPhishy(Bandit Pingu)
Program
Microsoft
Published
Sep 20, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.pentestpartners.com/security-blog/you-cant-stop-me-ms-teams-session-hijacking-and-bypass/
RELATED WRITEUPS
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI
Ghost In The Ppl Part 1: Byovdll
OtherUse-After-Free
Part 2: From Byovdll To Arbitrary Code Execution In Lsass
OtherUse-After-Free

Built with ❤️ by Shubham Rawat