IBM Application Security Insider: January 2012

« November 2011 | Main | April 2012 »

January 2012

January 19, 2012

Microsoft Anti-XSS Library Bypass (MS12-007)

Introduction:

Microsoft Anti-XSS Library is used to protect applications from Cross-Site Scripting attacks, by providing methods for input sanitization.

Vulnerability:

Microsoft Anti-XSS Library 3.0 and 4.0 are vulnerable to an attack in which an attacker is able to create a specially formed CSS, that after passing through the GetSafeHTML or GetSafeHTMLFragment methods, contains an expression that triggers a JavaScript call in Internet Explorer.

The following ASP.NET code demonstrates the vulnerability:

1. string data = Microsoft.Security.Application.Sanitizer.GetSafeHtml("<html>a<style></style><div>b</div></html>");

2. string data = Microsoft.Security.Application.Sanitizer.GetSafeHtmlFragment("<div style=\"font-family:Foo,Bar\\,'a\\a';font-family:';color:expression(alert(1));y'\">aaa</div>");

Continue reading "Microsoft Anti-XSS Library Bypass (MS12-007)" »

Posted by Adi Cohen on January 19, 2012 | Permalink | Comments (2) | TrackBack (0)

January 15, 2012

Testing RESTful Services with AppScan Standard

By Ory Segal

As much as I love SOAP web services (not!), it seems like RESTful web services really caught on and became a de-facto standard these days – you see them everywhere, in the cloud, in AJAX or Web 2.0 applications, mobile applications and so forth.

Unlike SOAP services, RESTful services are lightweight. They are extremely easy to understand and also to develop. Nevertheless, there seem to be a million different definitions as to what they really are, but I think the simplest way to understand them is by using the following four definitions, which I’ve found in this DeveloperWorks article:

RESTful services use HTTP methods explicitly
RESTful services are stateless
RESTful services expose directory structure-like URIs
RESTful services transfer XML, JSON or both

Simple right?

Continue reading "Testing RESTful Services with AppScan Standard" »

Posted by AppSecInsider on January 15, 2012 in Info Bits, Web Application Scanners | Permalink | Comments (3) | TrackBack (0)

Follow us on Twitter

IBM Application Security Insider

Follow @AppSecInsider

AppScan Free Trial

Try IBM Security AppScan software at no charge.

Download the free trial

Search

Application Security Links

Become a Fan

Comments or opinions expressed on this Weblog are the opinions of the authors alone. They are not necessarily reviewed in advance by anyone but the individual authors, and neither IBM nor any other party necessarily agrees with them. The views expressed by outside contributors and links to outside websites do not represent the views of IBM, its management or employees. All content on this Weblog has been made available on an “as-is” basis, and IBM shall not be liable for any direct or indirect damages arising out of use of this Weblog.

IBM Application Security Insider

January 2012

January 19, 2012

Microsoft Anti-XSS Library Bypass (MS12-007)

January 15, 2012

Testing RESTful Services with AppScan Standard

Follow us on Twitter

AppScan Free Trial

Search

Recent Posts

Archives

Categories

Application Security Links

Other Blogs We Read

Pages

Become a Fan