Коментарі для запису: Redirectors: the phantom menace http://websecurity.com.ua/3495/ Sun, 12 Apr 2026 10:48:28 +0000 http://wordpress.org/?v=MustLive Edition від: MustLive http://websecurity.com.ua/3495/#comment-363949 Wed, 22 Jun 2011 17:15:41 +0000 http://websecurity.com.ua/3495/#comment-363949 Also redirectors can be used for memory corruption in the browser, which can lead to DoS and code execution. As in case of <a href="/5217/" rel="nofollow">Microsoft Internet Explorer</a>. Also redirectors can be used for memory corruption in the browser, which can lead to DoS and code execution. As in case of Microsoft Internet Explorer.

]]> від: MustLive http://websecurity.com.ua/3495/#comment-327923 Sun, 27 Jun 2010 15:50:58 +0000 http://websecurity.com.ua/3495/#comment-327923 Also redirectors can be used for bypassing of restrictions on URL at HTML Injection attacks, particularly Link Injection. As in case of vulnerability at <a href="/3723/" rel="nofollow">news.yahoo.com</a>. In contrast to bypass of protection filters at using of <a href="/3531/" rel="nofollow">closed redirectors</a> (attack #10), in this case not external redirector is using, but internal one (at this site, or at the site from allowed list). Also redirectors can be used for bypassing of restrictions on URL at HTML Injection attacks, particularly Link Injection. As in case of vulnerability at news.yahoo.com.

In contrast to bypass of protection filters at using of closed redirectors (attack #10), in this case not external redirector is using, but internal one (at this site, or at the site from allowed list).

]]> від: MustLive http://websecurity.com.ua/3495/#comment-321712 Mon, 17 May 2010 22:53:01 +0000 http://websecurity.com.ua/3495/#comment-321712 Also redirectors can be used for conducting of DoS attacks on browsers via redirection to mailto: URL, which I wrote about in post <a href="/4206/" rel="nofollow">DoS in Firefox, Internet Explorer, Chrome, Opera and other browsers</a>. Also redirectors can be used for conducting of DoS attacks on browsers via redirection to mailto: URL, which I wrote about in post DoS in Firefox, Internet Explorer, Chrome, Opera and other browsers.

]]> від: MustLive http://websecurity.com.ua/3495/#comment-308923 Tue, 19 Jan 2010 18:07:27 +0000 http://websecurity.com.ua/3495/#comment-308923 Also redirectors can be used for conducting of XSS attacks via PDF files, which I wrote about in post <a href="/3870/" rel="nofollow">Script Injection in Adobe Acrobat</a>. Also redirectors can be used for conducting of XSS attacks via PDF files, which I wrote about in post Script Injection in Adobe Acrobat.

]]>