PayPal Manager Admin Account Hijack

[Mark Litchfield <mark () securatary com>]

Hi All,

I have just released a new vulnerability at 
http://www.securatary.com/vulnerabilities outlining a hack on 
http://manager.paypal.com that in the end allowed full admin access.

PayPal were very quick to fix this issue, so nice job PayPal Security / 
Engineering team

--
All the best

Mark Litchfield
http://www.securatary.com
Twitter - http://twitter.com/securatary





This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! 
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------