exploit the possibilities

Telegram 4.0.1 Two Factor Authentication Bypass

Telegram 4.0.1 Two Factor Authentication Bypass
Posted Jun 25, 2017
Authored by Shahab Shamsi

Telegram version 4.0.1 suffers from a two-factor authentication bypass vulnerability.

tags | exploit, bypass
MD5 | a874728318ad389b5b51f22df6fc748f

Telegram 4.0.1 Two Factor Authentication Bypass

Change Mirror Download

Title:
===============
Telegram 4.0.1 - "TwoFactor Authentication" ByPass (0day)


Author:
===============
Shahab Shamsi


Vendor Homepage
===============
https://telegram.org/


Date:
===============
2017-06-25


Exploitation-Technique:
===============
Local,Remote


References:
===============
Video1: https://www.youtube.com/watch?v=44ZDbvnZILk
Video2: http://securityman.org/telegram-4-0-1-twofactor-authentication-bypass-0day/


Severity Level:
===============
High


Description:
===============
This vulnerability makes you able to bypass the two factors authentication of Telegram account,
so you can access to the target Telegram account.

on the condition:
- That You Access To Activation code.
- Update Telegram Final Version




POC:
===============
Step 1 : At first, connect to the target account via one of the Telegram versions.
Step 2 : Then, inter the activation code of account
Step 3 : At final step that needs to pass two factors authentication of password, without intering the second password, reset the account.


Solution:
==============
- This bug prove that two factors authentication of Telegram accounts needs to review,

There is no certain solution to resolve this security problem till now.



Contact Me :
==============
Telegram : @Shahab_Shamsi
Email : info@securityman.org
WebSilte : WwW.iran123.Org
Tnx : Artin ghafari (Hidden Eagle)
- Thanks to my dear friend "Artin Ghafari" to record the video and help to discover the bug.
Login or Register to add favorites

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close