1 Resources for

cross-site scripting attack

Subscribe to this listing via:
RSS
Email

Sponsored White Papers, Webcasts, and Downloads

TechRepublic Resources

DOWNLOAD: Protect your Web site from cross-site scripting attacks: http://techrepublic.com.com/5138-3513-5733744.htmlHave you had to fend off cross-site scripting attacks on your Web site? Tell us how you handled the problem and what you did to secure any vulnerability.Website securityHi Mark,Thanks for the info. This is exactly what i was looking for. Actually I had posted a message under how to...; Tags: cross-site scripting, cross-site scripting attack, download, firewall, Java, Mark W. Kaelin, programming, security, Web, Web site, WebGoat, XSS; Discussion threads 2005-06-06

Additional Resources

The Anatomy of Cross Site Scripting: Cross site scripting XSS flaws are a relatively common issue in web application security, but they are still extremely lethal. They are unique in that, rather than attacking a server directly, they use a vulnerable server as a vector to attack a client. This can lead to extreme difficulty in...; Tags: XSS; White papers
Protect your Web site from cross-site scripting attacks: Cross-site scripting XSS attacks, a method by which attackers embed HTML scripts either in Web postings stored XSS or input fields on a Web site reflected XSS, are gaining popularity, most likely due to the relative ease with which they can be executed on unwitting victims. You can assess the...; Tags: Web, XSS, Web Site, Attack; Download resources 2005-06-06
Mozilla set to secure cross-site scripting in Firefox 3: XSS (a.k.a. cross-site scripting) attacks are a bane that accompanies the world of mashups and Web 2.0 features on the Net. However, the problem may be solved in the next major release of Mozilla's Firefox 3 with support for the new W3C draft to secure XML over HTTP. ...; Tags: Web, Mozilla Firefox, XSS, Mozilla Corp., Arun Radhakrishnan; Blog posts 2007-08-23
Cross Site Scripting Explained: This white paper briefs on how to stop Cross Site Scripting CSS attacks. It details the entire CSS technique and methods for securing a site against CSS attacks.; Tags: XSS, Sanctum Inc.; White papers 2002-06-05

Cross site scripting ?: Hmm on occasion when posting a response to a question. I'm getting block foe cross site scripting from an untrusted source.This came up on NoScripts' console.Warning: Error in parsing value for property 'CURSOR'. Declaration dropped.Source File: http://by114fd.bay114.hotmail.msn.com/cgi-bin/dasp/EN/hotmail___1000000003.cssLine: 24When the question owner has a notify on ?; Tags: Tony Hopkinson, XSS; Discussion threads 2007-04-20
Use the revised OWASP Top Ten to secure your Web applications -- Part 2: Cross site scripting XSS vulnerabilities are normally found in Web applications in which code injection is allowed. It is the most common Web application vulnerability. Scripts exploiting this weakness can cause serious problems for home and business users. In this download, Tom Olzak explores the types of cross site scripting...; Tags: XSS, Web Application; Download resources 2007-03-05
TechNet Webcast: How Microsoft Online Services Defends Against Cross-Site Scripting Vulnerabilities (Level 300): Cross-Site Scripting XSS vulnerabilities are a serious threat to providing Microsoft Online Services customers with a trustworthy computing experience. This webcast explains how inconsistently or poorly integrated validated output can cause XSS vulnerabilities. The attendee will learn how the Microsoft Anti-Cross Site Library provides product teams with a reliable, standard...; Tags: Webcast, XSS, Cross-site Scripting Vulnerability, Microsoft Corp., Microsoft TechNet; Webcasts 2007-04-24
TechNet Webcast: How Microsoft Online Services Defends Against Cross-Site Scripting Vulnerabilities (Level 200): Cross-Site Scripting XSS vulnerabilities are a serious threat to providing Microsoft Online Services customers with a trustworthy computing experience. This webcast explains how inconsistently or poorly integrated validated output can cause XSS vulnerabilities. The attendee will learn how the Microsoft Anti-Cross Site Library provides product teams with a reliable, standard...; Tags: Webcast, XSS, Cross-site Scripting Vulnerability, Microsoft Corp., Microsoft TechNet; Webcasts 2007-04-24
ISA Server 2000 Security Update for Error Pages (exe): A security issue has been identified in ISA Server that could allow an attacker to execute a cross-site scripting attack. You can help protect your computer by installing this update from Microsoft. This version is the first release on CNET Download.com.; Tags: Microsoft ISA Server 2000, XSS, Microsoft ISA Server, Microsoft Corp., Security Issue, Security; Software downloads 2007-09-14
Live From Redmond: The Next Generation of AJAX Attacks - A New Generation of Attack Theories: This webcast is a comprehensive discussion AJAX related application security concerns. Specifically the webcast discusses browser/server interact issues, the increased attack surface of AJAX applications, repudiation of HTTP requests, exposing application logic, vulnerabilities in AJAX bridges, cross-site scripting XSS and AJAX (i.e. The MySpace Virus, inappropriate use of AJAX, and...; Tags: Theory, Attack, AJAX, Security, Internet, Software/Web Development, Web Development, Web 2.0; Webcasts
DotDefender for IIS (exe): dotDefender secures Websites from a broad range of HTTP-based attacks, including Session attacks Denial of Service, Web application attacks (SQL injection, Cross-site scripting, Schema crawling, XPath injection, XPath XSS and known attack signatures), as well as requests originating from known attack sources spammer bots and compromised servers. dotDefender quickly installs...; Tags: XPath, Microsoft IIS Server, Attack, Applicure Technologies, dotDefender, XML, Security, Software/Web Development, Web Development; Software downloads 2007-10-31
Handling Java Web Application Input, Part 2: This paper explains the threat of cross-site scripting, as well as looking at correctly handling exceptions in J2EE web applications. An attacker can initiate an attack through a web browser by constructing attack strings, sending them via a HTTP get request through URL tampering, via a HTTP post request through...; Tags: HTTP, Java, Sun Microsystems Inc., Web Application, Security; White papers 2005-09-20
MSDN Webcast: Live From TechEd: How Hackers Hack - Level 200: Learning how hackers do what they do is a necessary to understand how to design and code defensively. This webcast looks at hacker's approaches to things like buffer overrun exploits, cross-site scripting attacks, SQL Injection, component spoofing, session hijacking, and more. Through this webcast developers will learn how hackers attack...; Tags: Microsoft Developer Network, Buffer-overrun, Webcast, XSS, Hacker, Hacking, Digital Media, Security, Consumer Electronics, Personal Technology; Webcasts
Redundant Servlets Vulnerable to XSS Attack: Vulnerability Description: The remote web server includes an example JSP application (/tomcat-docs/) that fails to sanitise user-supplied input before using it to generate dynamic content in an error page. An unauthenticated remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's...; Tags: Application servers, Middleware, OPEN SOURCE, SECURITY, Java, mihai.balta@..., documentation web application, XSS, servlet; Discussion threads 2007-07-20
Redundant Servlets Vulnerable to XSS Attack (Un-deploy Tomcat documentation: Vulnerability Description: The remote web server includes an example JSP application (/tomcat-docs/) that fails to sanitise user-supplied input before using it to generate dynamic content in an error page. An unauthenticated remote attacker may be able to leverage this issue to inject arbitrary HTML or script code into a user's...; Tags: Application servers, Middleware, OPEN SOURCE, mihai.balta@..., servlet, Apache Tomcat, documentation web application, XSS; Discussion threads 2007-07-20
Understanding Web-Based Threats and How to Thwart Them: The Web has never been more hostile and new dangers can lurk on even the most trusted Web sites. What's more, the potential harm that cross-site scripting XSS, cross-site request forgeries CSRF, and JavaScript malware payloads can cause is growing exponentially. Intranet hacking, history stealing, browser port scanning, and dozens...; Tags: Web, Sophos Plc., XSS, JavaScript, Malware, Intranet, Channel Management, Spyware, Adware & Malware, Security, Marketing; Webcasts 2007-09-20
MSDN Webcast: Preventing Attacks at the Application Level: Phishing and Session Hijacking (Level 300): This webcast provides an in-depth look at a variety of techniques that hackers use to steal customers' identities. In the webcast, you will learn about several methods that hackers use to hijack sessions, including cross-site scripting and token prediction. This webcast also includes current methods that hackers use to carry...; Tags: Microsoft Developer Network, Webcast, Hacker, Attack, Phishing, Cyberthreats, Spam, Hacking, Digital Media, Security, Viruses And Worms, Spam And Phishing, Consumer Electronics, Personal Technology; Webcasts
MSDN Webcast: Application-Level Attacks: Phishing and Session Hijacking (Level 300): This webcast provides in-depth demonstrations of a variety of identity theft techniques that are used to steal customer data. This will include detailed discussions of Session Hijacking via a number of methods including Cross Site Scripting and Token prediction. The webcast also gives detailed information into the current methods of...; Tags: Microsoft Developer Network, Webcast, Attack, Phishing, Cyberthreats, Spam, Digital Media, Viruses And Worms, Security, Spam And Phishing, Consumer Electronics, Personal Technology; Webcasts
Live From Redmond: How Hackers Reverse Engineer and Exploit an ASP.NET AJAX Application: This Webcast defines how to reverse engineer and exploit an ASP.NET AJAX application. Attendees will learn how a hacker looks at the application and what information they gather from exploring the applications architecture. This webcast discusses the threat of Cross-Site Scripting XSS, what it is and how this dangerous application...; Tags: XSS, Microsoft ASP.NET, Hacker, AJAX, Internet, Software/Web Development, Web Development, Web 2.0; Webcasts

<< Previous
page 1 of 1
Next >>

Cisco IOS Command Chart (IOS v.12+): Becoming proficient with Cisco equipment means remembering a whole new set of commands. These command charts give you a quick way to look up the needed IOS commands and switches when you need them.; Buy Now

TechRepublic Power Checklist: Securing Windows XP: If you have just finished installing Windows XP and you think the work is done, you're wrong. Some of the most important steps to getting Windows XP u ...; Buy Now