Subdomain takeover in CEX.io

Subdomain takeover in CEX.io

Hi  Friends

so This time i found Subdomain takeover in CEX.io

the  Vulnerable domain is support.cex.io , that is an alias for https://cexio.ssl.zendesk.com/
Screenshot_5
i also check the DNS Entries
cex
Screenshot_4
Screenshot_6
Screenshot_3
it says: “No help desk at 192.161.156.1

proxy.vip.pod6.iad1.zdsys.com
cexio.ssl.zendesk.com

There is no help desk configured at this address. This means that the address is available and that you can claim it at http://www.zendesk.com/signup/

And once attacker claimed it, if you try to navigate with your browser to support.cex.io  (Since this is an Alias (so is pointing out to a specific domain) for cexio.ssl.zendesk.com  you will redirect to cexio.ssl.zendesk.com  , which is attacker takeover  domain

So Thats how i got This Thats all
Hope Your like that 🙂
Thanks
Regards
Tayyab Qadir 

4 Responses so far.

  1. Tayyab Qadir says:

    Unfortunately Again Got Duplicate 😀

  2. mukesh says:

    sir can u sent a poc in video

Leave a Reply

Your email address will not be published. Required fields are marked *

16 + 5 =