Xbox password flaw exposed by five-year-old boy
Kristoffer Von Hassel, from San Diego, figured out how to log in to his dad's account without the right password.
Microsoft has fixed the flaw, and added Kristoffer to its list of recognised security researchers.
In an interview with local news station KGTV, Kristoffer said: "I was like yea!"
The boy worked out that entering the wrong password into the log-in screen would bring up a second password verification screen.
Kristoffer discovered that if he simply pressed the space bar to fill up the password field, the system would let him in to his dad's account.
Kristoffer's name now appears on a page set up to thank people who have discovered problems with Microsoft products.
The company also gave him four free games, $50 (£30), and a year-long subscription to Xbox Live.
Posted:
Related Forum: Xbox Forum
Source: http://www.bbc.co.uk/news/technology-26879185
Related Articles
Comments
EventPosted:
One smart kid. He is already going places in the short amount of time he's been on earth.
MortarPosted:
It is rather amazing that a five year old was able to notice such a problem, let alone pass the information on to Microsoft. As for what they gave him as a reward, I think they should have given him an Xbox One console with a selection of games as well as 12 months Xbox LIVE. It seems more befitting considering he is only five.
ZipsPosted:
-Tupac OMG this is so funny! A 5 year old?! C'mon Microsoft!
A lot of my friends found out about this and were laughing so much haha
ZipsPosted:
He found out something that is protecting passwords and they hive him $50 and 1 year live? Could of give him more than that xD
DanimalsPosted:
lol come on microsoft. you guys have a password flaw and a 5 year old figures it out faster then you
LagwagonPosted:
Congrats to that kid. I hope he works for Xbox (That would be pretty Cool). He seems smarter than Microsoft.
DiscJrPosted:
Linx Wow i would love to see this kid in 10 years from now. lol Mega HACKER! jk
Yeah, that's highly doubtable.
If you read the article you'll see what he did and it really isn't something a 1337 hacker would do.
He got lucky.
Latest Downloads
- 01. The Long Drive: SaveGame (American pickup)(0)
- 02. Goemon's Great Adventure (US / NTSC) - Nintendo 64 Game Save(1)
- 03. The Long Drive: SaveGame (blue VW Beetle)(0)
- 04. Deadly Creatures | Complete Savegame(0)
- 05. Driift Mania | 100% Savegame(0)
- 06. LostWinds: Winter of the Melodias | 100% Savegame(0)
- 07. Lost Winds | 100% Savegame(0)
- 08. Mega Man 10 | Savegame(0)
- 09. Mega Man 9 | Savegame(0)
- 10. LASTFIGHT Secret character unlocked(1)
- 11. PC Horizon Forbidden West Complete Save(12)
- 12. Castlevania: The Adventure ReBirth | 100% Savegame(0)
- 13. ExciteBike World Challenge | Savegame(0)
- 14. World of Goo | 100% Savegame(0)
- 15. La Torre de las Sombras | 100% Savegame(0)
Latest Tutorials
- 01. The Redress Of Mira 100% Walkthrough | Trophy & Achievement(398)
- 02. Russian Pinocchio Quick Trophy Guide(483)
- 03. Venatrix Quick Trophy & Achievement Guide(447)
- 04. Call of the Sea 100% Platinum Walkthrough(605)
- 05. Wire Lips 100% Platinum Walkthrough(546)
- 06. The Expanse 100% Platinum Walkthrough | Trophy & Achievement(517)
- 07. Doctor Who: The Edge of Reality - PS4 Platinum P/Thru(443)
- 08. Doctor Who:The Lonely Assassins - 100% Guide(393)
- 09. DAYMARE 1998 PS4 - Full game 100% TROPHY WALKTHROUGH(372)
- 10. Stray Platinum Walkthrough | Trophy & Achievement Guide(401)
- 11. Raji: An Ancient Epic | Complete Gameplay Walkthrough(526)
- 12. Corpse Killer: 25th Anniversary Edition - Longplay(484)
- 13. Song of Horror: Complete Edition Gameplay Walkthrough(360)
- 14. Remoteness 100% All Trophies Walkthrough(461)
- 15. Detective Inspector Mysterious Clues Platinum Walkthrough(446)
"Xbox password flaw exposed by five-year-old boy" :: Login/Create an Account :: 115 comments