Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Web Application Security
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications" Dec 20 2004 03:00PM
Eran Tromer (webapp2eran tromer org)
On 12/16/2004 03:13 AM, Thomas Schreiber wrote:
> SESSION RIDING - A Widespread Vulnerability in Today's Web Applications
> http://www.securenet.de/papers/Session_Riding.pdf

Nice work. I suspect this vulnerability is quite common and dangerous.

In Section 6.1 ("Countermeasures" / "Use secrets"), y...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus