ade.ghoz 
cisco_lane 
![Echo[dot]or[dot]id](http://echo.or.id/banner.gif "echo community")
Bypass All Authentication at Binus-Access Registration
Founder : umar a.k.a ghoz
Date found : 15 June 2007
Remotely Exploitable : Yes
Notes : vendor already contacted (16 Juni 2007)
Patched : i don’t know
Explain about the system :
When we want have an account to access free hotspot at binus (only for BInusian), we must regist to get username and password to login free hotspot at binus. But, before we regist we must login first at binusmaya!!! and click the link for redirect to registration free hotspot. If not, you will never can’t register to get an account, or if you dirrectly access the form registration you will show the message "Halaman ini hanya bisa diakses melalui BINUSMAYA".
My explanation :
All about "Explain about the system" i told you (up there…), I can bypass all the authentication. I can register with the other NIM and Name, the NIM i registered not mentioned in databases binus (ex: 1000000000 or 2000000000). So, i can registerd 100 peoples with different NIM.. if i’m not a lazy man.. i can register until 1 million people there. I think, the NIM here is not validated with carefully.. the proof is i can enter the registration with the others NIM without login to binusmaya.
POC (Proof Of Concept) :
I did this ‘hack’ with tools, the name of tool i used is Live HTTP Headers. With this tools you can examine the HTTP headers will be sent to the destination.
I sent Headers with a modification to access the form registration without login (bypass)
I’m already in.. so up to me right now.. 
Mmmm… "0200"?? anybody hava an account with the begginning of NIM "0200"??
Best Regards,
Your friend