WebApp Sec mailing list archives

Security Issues with Workflow apps

From: Saqib Ali <docbook.xml () gmail com>
Date: Thu, 8 Sep 2005 16:28:35 -0700

Hello All,

I am looking for some good articles that talk about Security Issue
relating to Workflow Application that use email as medium to
approve/reject actions.

For e.g. an attacker might intercept an workflow email, and use the
content to approve/reject a pending item, by spoofing an email to the
workflow auto-responder.

-- 
In Peace,
Saqib Ali
http://www.xml-dev.com/blog/
Consensus is good, but informed dictatorship is better.

Current thread:

Security Issues with Workflow apps Saqib Ali (Sep 08)
- <Possible follow-ups>
- Re: Security Issues with Workflow apps Anthony Chan (Sep 11)
- Re: Security Issues with Workflow apps Saqib Ali (Sep 11)