Stories - Hacking a Superbowl Ad

Stacks Image 17
It was the 2000 SuperBowl and ABC decided to try something called eTV, where they simultaneously linked the SuperBowl Internet site with the live TV broadcast. Scott had invited several friends over for the event. One was the CEO of a small software company. With eTV you could call the next play during the huddle and see how often you selected what the actual QB chose to do. It was a compelling, and sticky, method for linking viewers to the event. During TV commercials the website would also feature the same commercial airing on TV. It was during one of these web commercials that Scott noticed the site was running on Lotus Domino. Two years earlier Scott had a run in with the SVP at Lotus responsible for Domino when his team had exposed over fifty critical security holes in the platform by hacking Lotus's own Domino hosted site.

Scott pointed out to this software exec that this advertiser was running Domino, he then keyed in a really long cryptic URL. The next paged displayed was the web server's configuration database, in edit mode! Shocked that this bug still existed two years after his team had reported it Scott then demonstrated how one could over-ride the default action of Domino by creating an exception page within this database. Once created Scott refreshed the page and it showed that the change was permanent. Later when the server was rebooted it would have take affect. Scott then backed out the change. He then explained that he could just as easily have mapped the entire website over to their competitor, and on reboot they would be "virtually" out of business after having dumped $250K on a 30 second ad on the Superbowl.

Two years later and Lotus still had their head in the sand regarding network security. In fact while writing this piece Scott did some further research and found this article written TEN YEARS later still talking about some of the same serious security holes which are still in existence. Note all of these flaws in Domino can be mapped around if one takes the necessary time, and changes from the defaults to customized database settings.