A set of safety and security scientists claim they found a susceptability in login systems for documents that the Transport Safety Management (TSA) utilizes to validate airline company team participants at airport terminal safety and security checkpoints. The insect allow any person with a “fundamental expertise of SQL shot” include themselves to airline company lineups, possibly allowing them wind via safety and security and right into the cabin of a business aircraft, researcher Ian Carroll wrote in a blog post in August.
Carroll and his companion, Sam Curry, evidently found the susceptability while penetrating the third-party site of a supplier called FlyCASS that offers smaller sized airline companies accessibility to the TSA’s Understood Crewmember (KCM) system and Cabin Accessibility Safety System (CASS). They discovered that …
发布者:Wes Davis,转转请注明出处:https://robotalks.cn/researchers-say-a-bug-let-them-add-fake-pilots-to-rosters-used-for-tsa-checks/
