Security Basics mailing list archives
Re: About malicious java sciprt running...
From: オマル イスマイル <isumai-u () is aist-nara ac jp>
Date: Wed, 10 Dec 2003 09:45:17 +0900
Hi,This is called Cross-Site Scripting vulnerability (XSS), a well known web application
vulnerability.The most common XSS attack is to exploit user's cookie information by executing the malicious scripts at user's browsers. And user's session ID is also vulnerable to this kind of attacks.
On 2003.12.9, at 11:36 PM, <s970501 () ku edu np> wrote:
<security-basics () securityfocus com>
--------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- About malicious java sciprt running... s970501 (Dec 09)
- Re: About malicious java sciprt running... Shaun Colley (Dec 09)
- Re: About malicious java sciprt running... オマル イスマイル (Dec 10)
- Re: About malicious java sciprt running... Hugo Teso Torío (Dec 10)
- <Possible follow-ups>
- About malicious java sciprt running... Trystano (Dec 09)
- security awareness employee briefings Steve (Dec 10)
- Fw: About malicious java sciprt running... GUs (Dec 10)