Xbox password flaw exposed by five-year-old boy
Kristoffer Von Hassel, from San Diego, figured out how to log in to his dad's account without the right password.
Microsoft has fixed the flaw, and added Kristoffer to its list of recognised security researchers.
In an interview with local news station KGTV, Kristoffer said: "I was like yea!"
The boy worked out that entering the wrong password into the log-in screen would bring up a second password verification screen.
Kristoffer discovered that if he simply pressed the space bar to fill up the password field, the system would let him in to his dad's account.
Kristoffer's name now appears on a page set up to thank people who have discovered problems with Microsoft products.
The company also gave him four free games, $50 (£30), and a year-long subscription to Xbox Live.
Posted:
Related Forum: Xbox Forum
Source: http://www.bbc.co.uk/news/technology-26879185
Related Articles
Comments
JimboPosted:
Wow that is extremely impressive for a 5 year old. Lucky for us an annoying hacker didn't find it and compromise passwords.
dTpPosted:
Pretty cool he got remebered as a thanking member.
They will probably give him a free Xbox 720 in the near future.
They will probably give him a free Xbox 720 in the near future.
TFJPosted:
I sincerely thank that 5 year old kid. Without him most likely it wouldn't have been found. And are xbox live accounts would be compromised.
GaryPosted:
Wow just by pressing space a few times, Microsoft that is a horrible "backdoor". Well anyway i hope that kid enjoys his new games haha
KuraPosted:
FaIIenYhCHKNitomniYui Only $50 [30] + Four free games for finding a major flaw like this. Dang, Maybe should get a little more but with the money received + the four games + 1 year membership, maybe the price was right for him. But maybe he should get a little more anyways.
Hes Five REALLY! they gave him $110.
Sorry.
$110 is nothing!
He found a major flaw in the system which could've caused MS a lot of money.
If he was older than five, yeah the the reward should be greater.
Plus, the money (If he was rewarded more) would of gone to his parents and he could of done nothing about it.
Nintendo64Posted:
This is insane, they now have a 5 year old as a security researcher... GO ON SON! haha! :)
Bebe_RexhaPosted:
"I was like yea!" - What a funny kid xD
But I think this was a fair reward for a 5 year old. If he was older, then it should be more, but he's only 5.
I just find it funny how a 5 year old can figure out a major flaw!
But I think this was a fair reward for a 5 year old. If he was older, then it should be more, but he's only 5.
I just find it funny how a 5 year old can figure out a major flaw!
Evo8Posted:
YhCHKNitomniYui Only $50 [30] + Four free games for finding a major flaw like this. Dang, Maybe should get a little more but with the money received + the four games + 1 year membership, maybe the price was right for him. But maybe he should get a little more anyways.
Hes Five REALLY! they gave him $110.
Sorry.
$110 is nothing!
He found a major flaw in the system which could've caused MS a lot of money.
If he was older than five, yeah the the reward should be greater.
Latest Downloads
- 01. Rock Band 3 99% Save Wii(0)
- 02. Dead Rising 2: Off the Record - SaveGame (50 lvl, 5.000.000$, S/A)(0)
- 03. Need for Speed: Undercover - Save Game (4th level of the racer)(0)
- 04. [EU] F.I.S.T.: Forged in Shadow Torch (CUSA28371)(5)
- 05. Ghost Exile: SaveGame (Level 50 with 30,000 money)(0)
- 06. S.T.A.L.K.E.R. 2: Heart of Chornobyl - SaveGame (progress from the Dump to the Boat)(3)
- 07. Cyberpunk 2077: Phantom Liberty - SaveGame (The areas have been cleared.(8)
- 08. Red Dead Redemption 2: Save Game (Chapters 3,4,5 with all bags)(6)
- 09. My Gaming Club: SaveGame (pumped up character) [2.1](0)
- 10. Rock Band 2 99% Save Xbox 360(2)
- 11. Castlevania: Lords of Shadow 2 - Save Game(1)
- 12. The Planet Crafter: SaveGame (all endings and everything is open) [1.317](1)
- 13. Far Cry 3: Blood Dragon: Save Game - quests completed(3)
- 14. Sonic X Shadow Generations: SaveGame (The Game done 100%)(2)
- 15. The Karate Kid: Street Rumble - SaveGame (100% completion)(2)
Latest Tutorials
- 01. PS3 HEN - Audio via a USB headset.(568)
- 02. Stumble Guys | Social Butterfly Achievement(315)
- 03. Last Days of Lazarus Achievement Walkthrough (Xbox/PS)(1,612)
- 04. EDENGATE: The Edge of Life - 100% Trophy/Achievement Guide(2,025)
- 05. Sherlock Holmes Chapter One | Walkthrough | No Commentary(1,630)
- 06. Morbid: The Seven Acolytes | Full Game Walkthrough(2,683)
- 07. Adam Wolfe | Full Game Walkthrough | No Commentary(1,775)
- 08. ALFRED HITCHCOCK: VERTIGO - 100% Walkthrough(2,149)
- 09. SHERLOCK HOLMES THE AWAKENED | Walkthrough | No Commentary(1,510)
- 10. Space Roguelike Adventure | Guide - Cheat Code!(1,704)
- 11. DETECTIVE Stella Porta Case | Trophy & Achievement Guide(1,296)
- 12. Tunic 100% Platinum Walkthrough | Trophy & Achievement Guide(1,999)
- 13. Outbreak: The Nightmare Chronicles Achievement Walkthrough(1,600)
- 14. Full Void 100% - Trophy & Achievement Guide(1,639)
- 15. Outbreak: Lost Hope #Xbox Achievement Walkthrough(2,425)
"Xbox password flaw exposed by five-year-old boy" :: Login/Create an Account :: 115 comments