Filed in archive
Security
by gautam on April 2, 2007

Brian Chess, Chief scientist, Fortify stated:
Fortify has identified JavaScript hijacking attack code to exploit the Microsoft browser as well, but is refraining from currently making that publicly available. We figured out how this attack is possible and we need to educate software developers on it.
The security vendor has recommended that all programs communicating using JavaScript should take defensive steps such as session identifiers as part of each request returning JavaScript. This would entirely defeat the purpose of forgery attacks. Check the advisory issued by Fortify out here.
Trackback: http://publish.creative-weblogging.com/publish/mt-tb.pl/61253
Mr Wong
Vote for JavaScript hijacking can hijack web browser session:
|
Rating: 8.67 out of 3 vote(s) cast.
|
Response from:
anothr user
One new subscriber from Anothr Alerts:cw1925@gmail.com
Subscribe
Use the search to look for other interesting posts
| RSS | See all blog subscribe options |
|
What is RSS? | |
| Yahoo! |
|
| Addthis |
|
| Bloglines |
|
| Newsletter | |
| Follow us on Twitter! |










