A recent discovery by security researchers has revealed a critical vulnerability in the login systems used by the Transportation Security Administration (TSA) to verify airline crew members at airport security checkpoints. This loophole could potentially allow unauthorized individuals to infiltrate airline rosters and gain access to the cockpit of a commercial airplane.
The vulnerability was brought to light by researchers Ian Carroll and Sam Curry, who were investigating the third-party website of a vendor called FlyCASS. This website provides smaller airlines with access to the TSA’s Known Crewmember (KCM) system and Cockpit Access Security System (CASS). By inserting a simple apostrophe into the username field, the researchers were able to trigger a MySQL error, indicating a serious security flaw in the login SQL query.
Through further testing, Carroll and Curry were able to confirm that the vulnerability was indeed a result of SQL injection. By utilizing sqlmap and entering a specific username and password combination, they were able to gain administrator access to FlyCASS as an employee of Air Transport International. This unauthorized access allowed them to add crew records and photos for any airline using FlyCASS without any additional checks or authentication.
The implications of this vulnerability are significant and potentially dangerous. With the ability to add fake crew records and photos, individuals could easily present themselves as legitimate airline employees and bypass security checkpoints meant to verify their identities. This could pose a serious threat to the safety and security of both passengers and airline staff.
In response to inquiries about the vulnerability, TSA press secretary R. has stated that the agency is aware of the issue and is working with the vendor to address and resolve the security flaw. It is crucial for all parties involved to take swift action in order to prevent any further exploitation of this vulnerability and to ensure the integrity of airline crew login systems.
The discovery of this vulnerability highlights the importance of rigorous security testing and constant vigilance in safeguarding sensitive systems and data. It serves as a stark reminder of the potential risks posed by even seemingly minor security flaws, and underscores the need for continuous monitoring and updates to protect against malicious actors seeking to exploit vulnerabilities for their own gain.
Leave a Reply