The Web Application Hacker’s Handbook Discovering and Exploiting Security Flaws

Download 5,76 Mb.

Pdf ko'rish

bet	750/875
Sana	01.01.2022
Hajmi	5,76 Mb.
	#293004

1 ... 746 747 748 749 750 751 752 753 ... 875

Bog'liq
3794 1008 4334

438

Chapter 12

■

Attacking Other Users

70779c12.qxd:WileyRed 9/14/07 3:14 PM Page 438

N OT E

The latest versions of most browsers have modified their behavior in

relation to named frames and, by default, extend the same origin policy to

prevent one web site from writing the content of a frame that was issued by a

different domain. As users gradually migrate to the latest browsers, this

category of vulnerability will cease to be relevant.

HACK STEPS

■

If the application uses frames, review the HTML source of the main

browser window, which should contain the code for the frameset.

■

If the frameset assigns a name to each frame, it is probably vulnerable,

Download 5,76 Mb.

Do'stlaringiz bilan baham:

1 ... 746 747 748 749 750 751 752 753 ... 875