[WEB SECURITY] HOST header exploitation
7Lyrix
7lyrix at gmail.com
Mon Apr 27 00:07:02 EDT 2009
Flash & Java will be the best candidates.
They have socket capability and you can use them to exploit via
payload like XSRF.
On 4/27/09, Matt Hellman <mhellman at taxandfinance.com> wrote:
> I have an application that is vulnerable to HOST header manipulation.
> In this case, it's an issue with the authentication framework that
> eventually appends a session ID to a redirect based on the HOST header.
> To exploit this weakness, how might an attacker get a victim to submit a
> request with a crafted HOST header? XHR? Flash? Java?
>
> TIA,
> Matt
>
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.
>
>
> ----------------------------------------------------------------------------
> Join us on IRC: irc.freenode.net #webappsec
>
> Have a question? Search The Web Security Mailing List Archives:
> http://www.webappsec.org/lists/websecurity/archive/
>
> Subscribe via RSS:
> http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
>
> Join WASC on LinkedIn
> http://www.linkedin.com/e/gis/83336/4B20E4374DBA
>
>
----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec
Have a question? Search The Web Security Mailing List Archives:
http://www.webappsec.org/lists/websecurity/archive/
Subscribe via RSS:
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]
Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA
More information about the websecurity
mailing list