[WEB SECURITY] Microsoft Security Test Site Vulnerable

. . webappsec at gmail.com
Thu May 12 16:05:11 EDT 2005


I found this article on http://www.theregister.co.uk last night.

"competitors learned they if they answered incorrectly they could
press backspace and re-answer questions without any scoring penalty.
Similar tricks allowed the unscrupulous to artificially inflate their
scores. "After two days some people already at 1,750 points, when the
maximum they could have achieved was 350 points per day,""
-theregister


http://www.theregister.co.uk/2005/05/11/ms_gatekeeper_test_fiasco/

---------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/



More information about the websecurity mailing list