Hosting Provided By

Article Announcement: Penetration Testing for Web Applications (Part Two)

From: Marc Fossi <mfossi(at)securityfocus.com>
Date: Sun Jul 06 2003 - 09:38:47 EDT

Penetration Testing for Web Applications (Part Two) By Jody Melbourne and David Jorm (July 3, 2003)

The second installment in this series expands upon issues of input validation - how developers routinely, through a lack of proper input sanity and validity checking, expose their back-end systems to server-side code-injection and SQL-injection attacks. It also explores the manner in which these issues may manifest the client-side as cross-site scripting and other content-manipulation vulnerabilities.

http://www.securityfocus.com/infocus/1709

Marc Fossi
Symantec Corp.
www.symantec.com

Received on Sun Jul 6 10:02:10 2003

This message: [ Message body ]
Next message: Thor Larholm: "RE: Article Announcement: Can Microsoft End Spam?"
Previous message: Marc Fossi: "Article Announcement: Can Microsoft End Spam?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:33 EDT