This lab on Unverified Password Changes assesses the learner’s understanding of how an existing Identification and Authentication Failure vulnerability in an online e-commerce application can be discovered and exploited.
Learning Objectives
p>
On successful completion of this course, learners should have the knowledge and skills required to:
- Understand how adversaries can defeat weak cryptography and exploit broken password change mechanisms to take over other users' accounts.