Article: Bypassing JavaScript Filters – the Flash! Attack
Results 1 to 3 of 3
  1. June 6th, 2002, 10:41 AM #1
    micael
    micael is offline
    Senior Member
    Join Date
    Nov 2001
    Posts
    742

    Article: Bypassing JavaScript Filters – the Flash! Attack

    Source: EyeonSecurity

    last updated: 05.June.2002 - Obscure

    Article/Whitepaper: Bypassing JavaScript Filters - the Flash! Attack

    "In this document we will be describing a loophole, with security implications, found in many websites that allow Flash documents to be inserted within HTML, or uploaded to the server. This paper relies on the fact that a huge number of web surfers have installed Macromedia Flash plugin/ActiveX control, for an attacker to launch a Cross-site scripting attack. We will not go into a lot of detail in describing Cross-site scripting attacks in general; However we hope that this paper will explain how Flash documents can be used to inject JavaScript into otherwise well filtered Web Applications."
    Reply With Quote Reply With Quote
  2. June 6th, 2002, 02:52 PM #2
    s0nIc
    s0nIc is offline
    Fastest Thing Alive s0nIc's Avatar
    Join Date
    Sep 2001
    Location
    Sydney
    Posts
    1,584
    hmm ok.. so where is this document? i wanna read it.
    Reply With Quote Reply With Quote
  3. June 6th, 2002, 10:13 PM #3
    micael
    micael is offline
    Senior Member
    Join Date
    Nov 2001
    Posts
    742
    Follow the link above --> Article/Whitepaper: Bypassing JavaScript Filters - the Flash! Attack .
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides