Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



WebApp Sec: Re: HTTP Response URI XSS but not in 302 Body

Re: HTTP Response URI XSS but not in 302 Body

From: Paul Johnston <paul_at_westpoint.ltd.uk>
Date: Fri, 02 Jul 2004 09:48:42 +0100

Hi,

That's a false positive from your testing tool. Side note: a while back
I submitted patches for Nessus to prevent this kind of false positive.
XSS plugins now only look at the response body, not header.

However, if you are able to inject line breaks into the URL then you
will be able to muck about with headers and that is a vulnerability.

Regards,

Paul

Robert.L.Grill_at_wellsfargo.com wrote:

>Has anyone had an instance where they saw a successful Cross Site Scripting
>Exploit by receiving a script in a URL response but not in the body of the
>returned document.
>
> 

-- 
Paul Johnston
Internet Security Specialist
Westpoint Limited
Albion Wharf, 19 Albion Street,
Manchester, M1 5LN
England
Tel: +44 (0)161 237 1028
Fax: +44 (0)161 237 1031
email: paul_at_westpoint.ltd.uk
web: www.westpoint.ltd.uk
Received on Jul 02 2004
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]