<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Full Disclosure: Re: [WEB SECURITY] Useful technique when performing XSS

Re: [WEB SECURITY] Useful technique when performing XSS

From: Amit Klein <aksecurity_at_gmail.com>
Date: Wed, 07 Feb 2007 22:03:26 +0200

pdp (architect) wrote:
> http://www.gnucitizen.org/blog/playing-in-large
>
> Basically this article is about how to squeeze more data into size
> restricted, unsanitized field. This technique can also be used to hide
> attackers activities.
>
It seems that you've stumbled upon something I already disclosed:
http://www.webappsec.org/lists/websecurity/archive/2005-10/msg00030.html

Sorry...
-Amit

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Received on Feb 07 2007

This message: [ Message body ]
Next message: pdp (architect): "Re: [WEB SECURITY] Useful technique when performing XSS"
Previous message: Denis Jedig: "Re: [Full-Disclosure] (Psexec on *NIX)"
In reply to: pdp (architect): "Useful technique when performing XSS"
Next in thread: pdp (architect): "Re: [WEB SECURITY] Useful technique when performing XSS"
Reply: pdp (architect): "Re: [WEB SECURITY] Useful technique when performing XSS"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]