Detailed write up on new CSRF Token hack using CSS History:
http://securethoughts.com/2009/07/hacking-csrf-tokens-using-css-history-hack/
Proof of Concept here:
http://www.securethoughts.com/security/csrfcsshistory/csrfscan.html
Best Regards.
Detailed write up on new CSRF Token hack using CSS History:
http://securethoughts.com/2009/07/hacking-csrf-tokens-using-css-history-hack/
Proof of Concept here:
http://www.securethoughts.com/security/csrfcsshistory/csrfscan.html
Best Regards.
No comments:
Post a Comment