java

HTTP Request Smuggling Tackled By Sun

Filed in archive Security by gautam on December 11, 2006

HTTP Request Smuggling.jpg

A latest advisory from Sun states that there is a bug in a number of its server products making them the target of HTTP Request Smuggling attacks. This has increased the chances of web cache poisoning coupled with firewall deception and prevention systems intrusion. Also there is a chance of hijacking of HTTP sessions and cross site scripting attacks.

All this happens in case Sun Java System Proxy Server is used along with Java System Application Server or the Sun Java System Web Server. This problem was brought to notice by Watchfire last year and it's still not clear why it took so long for Sun to take a note of this problem. In order to tackle this problem, Sun has released the latest updates in Sun Java System Application Server, Sun Java System Web Server, Sun Java System Web Proxy Server and Sun ONE Application Server. Click here for the updates.

Related Entries:

Smuggling Cellphones - 16 September 2006
Fällt Open Source? - 21 March 2007
PHP-Klasse::Karatag Google Maps HTTP Request - 12 April 2007
PEAR::HTTP_Request in Version 1.4.1 veröffentlicht - 19 May 2007

« A Web Developer's Best Fr... | Main | Sun Java SE 6 Sees the Li... »

Permalink: HTTP Request Smuggling Tackled By Sun

Tags: HTTP Request Smuggling sun sun microsystems java vulnerability ajax request+smuggling

Trackback: http://publish.creative-weblogging.com/publish/mt-tb.pl/45363

Addthis

Ask

Blinklist

del.icio.us

Digg

Fark

Facebook

Google

Lycos

Ma.gnolia

Add this page to Mister Wong

Mr Wong

Netscape

Netvousz

Newsvine

Reddit

StumbleUpon

Slashdot

Tailrank

Technorati

Wink

Yahoo

Vote for HTTP Request Smuggling Tackled By Sun:

Currently 9.33/10
1
2
3
4
5
6
7
8
9
10

Rating: 9.33 out of 3 vote(s) cast.

Add your response to HTTP Request Smuggling Tackled By Sun:

Name: *

Email: (will never be shown)*

URL:

(* marked fields are required)

Notify me if more comments appear?

Subscribe to Java Entrepreneur newsletter? (Newsletters are sent out weekly).

Remember me

Security Code: *
(Please help us to sort out spam.)

Please enter your comment here: (Sorry, no HTML is allowed - URLs will be made clickable automatically if you add http:// to your URL.)

We welcome your comments, however all comments are moderated. Offensive or off-topic comments will be deleted and not displayed.

Share It

Use the search to look for other interesting posts

Popular posts from our other blogs:

RSS	See all blog subscribe options
Google	What is RSS?
Yahoo!
Addthis
Bloglines
Newsletter
Twitter	Follow us on Twitter!

Tagcloud

Categories

Most popular

Archives

February 2010 (1)
January 2010 (5)
December 2009 (4)
November 2009 (6)
October 2009 (6)
September 2009 (4)
August 2009 (5)
More

Advertise with us

Interested in sponsoring this site? Learn more about all our advertising options or email advertising - at - creative-weblogging.com or give us a call at +1 (650) 331 4900.

Contributors (Last 90 days)

Jeff Goldman (12)
Creative Weblogging (3)

This site has 722 entries and is powered by Creative Weblogging since September 2005.

Recent Comments

Our Editors recommend

Disclaimer

Creative Commons License

Some of the contents of this site are protected Creative Weblogging Inc. 2004-2010.

Check out our Sponsored Blogs!

Business Computer Blog (UK)

Testimonials

'Great looking blog. Good quality posts with useful information.'

Other blogs in the same channel in the Creative Weblogging Network: Technology

BlogWealth

The CIO Weblog

HackITLinux

Googlestack

Nanotechbuzz

On Storage

P2P File Sharing

P2P File Sharing

The VoIP Weblog

The VoIP Weblog

About the company | Advertise with us | Disclaimer | Privacy Policy | Refund/Return Policy | Memcache Hosting | Domain Search | People Search | Breaking News | Gourmet Lunch

All Creative Weblogging sites are built in accordance with the Google Webmaster Guidelines and IAB guidelines.