Insecure Login Pages: Customer Support

1. Insecure Customer Support Login Pages
2. ==> Your password may be sent plain-text if you login to these sites
3. ==> Plain-text passwords can be sniffed by a packet collector
4. ==> Common locations of compromise are wireless at Hotels, Coffee Shops, Airports, etc.
5. ==> The intent of this post is to educate end-users on the security of their passwords
6. ==> These site were simple to find, they were all on the first 4 pages of a google search for 'support login'
7. Reported by neonprimetime security
8. http://neonprimetime.blogspot.com
9.  
10. ******
11.  
12. NVidia Customer Support
13. ==> http://nvidia.custhelp.com/app/utils/login_form/redirect/ask
14. ==> Posts to http://nvidia.custhelp.com/ci/ajaxRequest/doLogin/session/
15. ==> Form item: "password" = "mypassword"
16.  
17. Vision Solutions Customer Support
18. ==> http://portal.visionsolutions.com/extlogin.aspx
19. ==> Posts to http://portal.visionsolutions.com/extlogin.aspx
20. ==> Form item: "ctl00$PageContent$LoginBox2$tbpassword" = "mypassword"
21.  
22. Psychology Software Tools Customer Support
23. ==> http://www.pstnet.com/support/login.asp
24. ==> Posts to http://www.pstnet.com/support/login.asp?jump=default.htm&email=mylogin%40abc.com&password=mypassword&.save=Login
25. ==> Query String: "password" = "mypassword"
26.  
27. Granbury Restaurant Solutions Customer Support
28. ==> http://support.granburyrs.com/support/login.php
29. ==> Posts to http://support.granburyrs.com/support/login.php
30. ==> Form item: "password" = "mypassword"
31.  
32. Content DM Customer Support
33. ==> http://www.contentdm.org/login/login_USC.asp
34. ==> Posts to http://www.contentdm.org/login/login_USC.asp?action=login
35. ==> Form item: "user_pwd" = "mypassword"
36.  
37. InRule Technology Customer Support
38. ==> http://support.inrule.com/login.aspx?ReturnUrl=%2fdefault.aspx
39. ==> Posts to http://support.inrule.com/login.aspx?ReturnUrl=%2fdefault.aspx
40. ==> Form item: "ctl00$ContentPlaceHolder11$Login1$Password" = "mypassword"
41.  
42. LRS Customer Support
43. ==> http://www.lrs.com/eom/ics/login.aspx
44. ==> Posts to http://www.lrs.com/eom/ics/login.aspx
45. ==> Form item: "ctl00$MainContent$tbPasswordString" = "mypassword"
46.  
47. Hypercube Customer Support
48. ==> http://www.hyper.com/Support/SupportLogin/tabid/466/Default.aspx
49. ==> Does not clear out the password on postback
50. ==> <input name="dnn:ctr1140:Signin:txtPassword" type="password" ... id="dnn_ctr1140_Signin_txtPassword" ... value="mypassword" ... >
51.  
52. FileMaker Customer Support
53. ==> http://help.filemaker.com/app/utils/login_form/redirect/account%252Foverview/session/
54. ==> Posts to http://help.filemaker.com/ci/ajaxRequest/doLogin
55. ==> Form item: "password" = "mypassword"
56.  
57. Axis Communications Customer Support
58. ==> http://www.axis.com/login2/login.php
59. ==> Posts to http://www.axis.com/login2/login.php
60. ==> form-data;name="pwd" 6d:79:70:61:73:73:77:6f:72:64 ("mypassword")
61.  
62. Profit Key Customer Support
63. ==> http://www.profitkey.com/support/support-login/
64. ==> Posts to http://profitkey.custhelp.com/ci/ajaxRequest/doLogin
65. ==> Form item: "password" = "mypassword"
66.  
67. BlueAnt Customer Support
68. ==> http://www.myblueant.com/support/login.php
69. ==> Posts to http://www.myblueant.com/support/login.php
70. ==> Form item: "loginpassword" = "mypassword"
71.  
72. Wyatt Technology Customer Support
73. ==> http://www.wyatt.com/Log-in.html
74. ==> Posts to http://www.wyatt.com/index.php?option=com_user&lang=en
75. ==> Form item: "passwd" = "mypassword"