/Code Review/Weak Password Hashing

Weak Password Hashing

Using MD5 for password hashing provides inadequate security against modern attacks.

HIGHEasy

Vulnerable Codepython

1import hashlib
2
3def register_user(username, password):
4    password_hash = hashlib.md5(password.encode()).hexdigest()
5    
6    db.users.insert_one({
7        'username': username,
8        'password': password_hash
9    })
10    return True
11
12def verify_password(username, password):
13    user = db.users.find_one({'username': username})
14    if not user:
15        return False
16    
17    input_hash = hashlib.md5(password.encode()).hexdigest()
18    return input_hash == user['password']

Understanding the Issue

MD5 is a fast hashing algorithm, making it vulnerable to brute-force and rainbow table attacks. It also lacks salting, meaning identical passwords produce identical hashes. Modern password hashing requires slow algorithms like bcrypt, scrypt, or Argon2 with unique salts.

Rainbow Table Attack

Attacker uses precomputed hashes to crack passwords

Malicious Input

# Password hash from leaked database:
5f4dcc3b5aa765d61d8327deb882cf99

# Lookup in rainbow table:
hashcat -m 0 -a 0 hash.txt rockyou.txt

Impact

5f4dcc3b5aa765d61d8327deb882cf99:password

✓ MD5 hash cracked in < 1 second
✓ "password" is a common password
✓ No salt = identical passwords have same hash
✓ Entire database can be cracked quickly

Technical Details

Vulnerability Type: Weak Cryptography
Severity: HIGH
Language: Python
CWE: CWE-328
OWASP: A02:2021 - Cryptographic Failures

Weak Password Hashing

Understanding the Issue

How Attackers Exploit This

Rainbow Table Attack

Finding the Vulnerability(3 hints)

Technical Details

Weak Password Hashing

Understanding the Issue

How Attackers Exploit This

Rainbow Table Attack

Finding the Vulnerability(3 hints)

Technical Details