Xbox password flaw exposed by five-year-old boy
Kristoffer Von Hassel, from San Diego, figured out how to log in to his dad's account without the right password.
Microsoft has fixed the flaw, and added Kristoffer to its list of recognised security researchers.
In an interview with local news station KGTV, Kristoffer said: "I was like yea!"
The boy worked out that entering the wrong password into the log-in screen would bring up a second password verification screen.
Kristoffer discovered that if he simply pressed the space bar to fill up the password field, the system would let him in to his dad's account.
Kristoffer's name now appears on a page set up to thank people who have discovered problems with Microsoft products.
The company also gave him four free games, $50 (£30), and a year-long subscription to Xbox Live.
Posted:
Related Forum: Xbox Forum
Source: http://www.bbc.co.uk/news/technology-26879185
Related Articles
Comments
MajPosted:
They should of said to Microsoft, " We have found a big security issue in your systems and would like $250,000 to discuss how to fix it"
DJMarkyMarkPosted:
It's pretty crazy that this was discovered by a 5 year old but I doubt too many people were trying to find a way around the password.
Microsoft could of given him more than just a few games and a year of Xbox Live though.
Microsoft could of given him more than just a few games and a year of Xbox Live though.
DusknoirPosted:
Hearthstone That just goes to show how developed Microsoft's security network is! None the less congratulations to that little kid.
True, but they did fix it right away and at least they know how to fix problems with their network.
12sPosted:
people saying he "hacked" it, yeah a 5 year old boy
did this on purpose, props to him finding this instead
of a real hacker , could of turned out bad
did this on purpose, props to him finding this instead
of a real hacker , could of turned out bad
Latest Downloads
- 01. Assassin's Creed 3: Save Game (Game completed 8%, until Chapter 4)(0)
- 02. Supermarket Simulator: SaveGame (Quick start, 172 day, 65lvl)(0)
- 03. GoreBox: SaveGame (Ancient village of the Paleozoic era)(0)
- 04. Need for Speed: Most Wanted (2005) - SaveGame (0% career, 2 BMWs in the garage)(0)
- 05. [EU] CARX DRIFT RACING ONLINE - PROGRESS SAVE 6 SP DUO (CUSA15633)(5)
- 06. Fallout Shelter Modded Save PC(1)
- 07. Remember Me: SaveGame (The Game done 100%)(0)
- 08. The Long Drive: SaveGame (American pickup)(0)
- 09. Goemon's Great Adventure (US / NTSC) - Nintendo 64 Game Save(1)
- 10. The Long Drive: SaveGame (blue VW Beetle)(0)
- 11. Deadly Creatures | Complete Savegame(1)
- 12. Driift Mania | 100% Savegame(0)
- 13. LostWinds: Winter of the Melodias | 100% Savegame(0)
- 14. Lost Winds | 100% Savegame(0)
- 15. Mega Man 10 | Savegame(0)
Latest Tutorials
- 01. The Redress Of Mira 100% Walkthrough | Trophy & Achievement(465)
- 02. Russian Pinocchio Quick Trophy Guide(572)
- 03. Venatrix Quick Trophy & Achievement Guide(552)
- 04. Call of the Sea 100% Platinum Walkthrough(678)
- 05. Wire Lips 100% Platinum Walkthrough(654)
- 06. The Expanse 100% Platinum Walkthrough | Trophy & Achievement(622)
- 07. Doctor Who: The Edge of Reality - PS4 Platinum P/Thru(562)
- 08. Doctor Who:The Lonely Assassins - 100% Guide(505)
- 09. DAYMARE 1998 PS4 - Full game 100% TROPHY WALKTHROUGH(469)
- 10. Stray Platinum Walkthrough | Trophy & Achievement Guide(465)
- 11. Raji: An Ancient Epic | Complete Gameplay Walkthrough(627)
- 12. Corpse Killer: 25th Anniversary Edition - Longplay(631)
- 13. Song of Horror: Complete Edition Gameplay Walkthrough(416)
- 14. Remoteness 100% All Trophies Walkthrough(615)
- 15. Detective Inspector Mysterious Clues Platinum Walkthrough(520)
"Xbox password flaw exposed by five-year-old boy" :: Login/Create an Account :: 115 comments