1 Kicks

Cracking a Microsoft contest or why Silverlight-WCF security is import(sandrinodimattia.net)

submitted by sandrinosandrino(270) 1 year, 5 months ago

Now there I was playing the game while I was debugging an application with Fiddler when I noticed something... the Silverlight was communicating with a WCF service. Nothing special here, were it not for the fact that after some time I was able to access the list of all high scores, insert my own highscore (which could make me win a Windows Phone or a laptop), ... After doing a few tests I notified Microsoft Belgium, but I guess someone already took advantage of this 'exploit'. The top score is someone who solved the puzzle in a little over 2 sec... sure! Even if you tweak your mouse and have loads of luck it's not possible to drag the 4 balls that quickly. But this is as much the fault of the people who cheated as it is the fault of the people who created this game.

add a comment |category: |Views: 7

tags: another

new Add a live kick counter to your blog >> liveImage

You can even customize the image by choosing your own colors, and then clicking the button below to update the preview and the html code:

  • "Kick It" text
  • "Kick It" background
  • kick count text
  • kick count background
  • border

Simply copy and paste this HTML into your blog post.


Users who kicked this story:
sandrinosandrino(270)
Comments:

No comments so far

information Login or create an account to comment on this story
Submit a Story
View upcoming stories
How else can I help?
Add our feeds to your site

Most Active Users

What's this?