Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

[Bypassing JavaScript Filters - the Flash! Attack]
From: Obscure <obscure () eyeonsecurity net>
Date: Wed, 5 Jun 2002 23:28:39 +0200
Note: Sorry for cross posting - but I think this concerns various discussion
lists.

[ Bypassing JavaScript Filters - the Flash! Attack ]

In this paper we will be describing a loophole, with security
implications, found in many web-sites that allow Flash documents to be
embedded within HTML, or uploaded to the server. We will be describing
how Web application developers make use of complex filters for HTML
pages but tend to trust Flash content, and as a result introduce a
security issue.

More details:
http://eyeonsecurity.net/papers/

-- 
Best regards,
 Obscure                          mailto:obscure () eyeonsecurity net

------------------------------
   http://eyeonsecurity.net 
------------------------------

  By Date           By Thread  

Current thread:
  • [Bypassing JavaScript Filters - the Flash! Attack] Obscure (Jun 05)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]