NASA Security Vulnerability: Improper Redirection via Third-Party Plugin (Keylock SSO)

By /

Listen to this Post

Featured Image
A security researcher, Praveenkumar (Praveenarsh), was officially acknowledged by NASA for identifying and reporting a security vulnerability in their systems. The vulnerability involved “Improper redirection using the third party plugin (Keylock SSO).”

You Should Know:

Understanding SSO Vulnerabilities

Single Sign-On (SSO) vulnerabilities can lead to serious security breaches. Here are key commands and techniques to test for similar vulnerabilities:

1. Intercepting SSO Requests with Burp Suite:

 Start Burp Suite
java -jar burpsuite_pro.jar

2. Testing for Open Redirects:

 Use curl to test redirects
curl -v "https://target.com/login?redirect=http://malicious.com"

3. Checking HTTP Headers:

curl -I "https://target.com" | grep -i "location"

4. Automated Testing with OWASP ZAP:

 Start ZAP
./zap.sh -daemon -port 8080 -host 127.0.0.1

5. SSO Configuration Checks:

 Check SAML metadata for misconfigurations
openssl x509 -in saml_certificate.crt -text -noout

Linux Commands for Security Testing:

 Monitor network traffic
sudo tcpdump -i eth0 -w nasa_traffic.pcap

Analyze SSL/TLS configurations
openssl s_client -connect nasa.gov:443 -servername nasa.gov | openssl x509 -noout -text

Check for DNS misconfigurations
dig nasa.gov ANY

Windows Commands for Security Testing:

 Check active connections
netstat -ano | findstr "ESTABLISHED"

Verify SSL certificates
Test-NetConnection nasa.gov -Port 443 | fl

Python Script to Test Redirects:

import requests

response = requests.get("https://nasa.gov/login", allow_redirects=False)
if 300 <= response.status_code < 400:
print(f"Redirect found to: {response.headers['Location']}")

What Undercode Say:

This NASA vulnerability highlights the critical importance of proper SSO implementation. Third-party plugins often introduce security risks that organizations overlook. The cybersecurity community must:

1. Regularly audit all third-party integrations

2. Implement strict redirect validation

3. Conduct thorough penetration testing

4. Monitor for abnormal authentication patterns

Key takeaways for security professionals:

  • Always verify redirect URLs
  • Implement allowlists for trusted domains
  • Regularly update and patch SSO plugins
  • Conduct security awareness training for developers

Expected Output:

Vulnerability Found: Improper Redirect in SSO Implementation
Affected System: NASA
Vulnerability Type: CWE-601 (Open Redirect)
Severity: Medium-High
Recommended Fix: Implement strict URL validation and use allowlists

IT/Security Reporter URL:

Reported By: Praveenkumar Praveenarsh – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram

Related Posts: