Flaw allowed bypassing verification code, log in to any Microsoft account