« IIS 5.1 Patched (Dangling Pointer) | Main | Air Bags by Popular Demand »

July 15, 2007



Billy Rios, Nathan McFeters, and Raghav Dube posted the paper they submitted to def con about URIs here, which has some additional info and ideas: http://www.xs-sniper.com/nmcfeters/URI_Use_and_Abuse.pdf

And then there's also the 0day in Trillian they found: http://www.xs-sniper.com/nmcfeters/Cross-App-Scripting-2.html

The comments to this entry are closed.

Follow us on Twitter

AppScan Free Trial

Try IBM Security AppScan software at no charge.

Become a Fan