[WEB SECURITY] Exploiting User-Agent XSS

Atul Agarwal atul at secfence.com
Thu May 26 09:04:56 EDT 2011


Hello List,

Is anyone aware of any reliable method to force the user (victim) to
change/spoof the User-Agent of the browser so as to exploit a XSS Vuln.

The flash technique does not work any more.

Thanks,
Atul Agarwal
Secfence Technologies
http://www.secfence.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20110526/7013c89d/attachment-0003.html>


More information about the websecurity mailing list