Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Attackers improve on JavaScript trickery
Robert Lemos, SecurityFocus 2007-04-18

Vancouver, CANADA -- As JavaScript becomes an increasingly key component of online attacks, attackers are investing more energy in obfuscation and other techniques to make defenders' attempts at reverse engineering more difficult, a security researcher told attendees at the annual CanSecWest conference on Wednesday.

Comments Mode:
Attackers improve on JavaScript trickery 2007-04-19
Anonymous
Attackers improve on JavaScript trickery 2007-04-19
Anonymous
Attackers improve on JavaScript trickery 2007-04-21
FR3DC3RV
This only shows that XSS attacks are starting to be more respected as a vulnerability than they were some time ago, when XSS was poorly known.

The Universal PDF Flaw, UXSS Image Injection, the increasing discoverys of XSS flaws at sites like Google,Hotmail,Microsoft,Cisco,Yahoo and the researchs in this area have shown that XSS can indeed cause lots of damages, other than just stealing cookie and defacing pages.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11459/34482#34482




 

Privacy Statement
Copyright 2007, SecurityFocus