java

Server Side Vulnerability Reported In AJAX

Filed in archive AJAX on January 5, 2007

A key vulnerability has been reported in Direct Web Reporting of AJAX framework by Imperva. This is being regarded as the first server side vulnerability and the flaw could be misused to compromise an application based on AJAX. Imperva states that it is access control vulnerability and enables attackers break into back end databases and servers or launch a DoS attack.

More of such vulnerabilities are expected in the server side framework and application programmers must rectify this flaw otherwise their applications might bear the brunt. Imperva has issued guidance in this regard for plugging the flaw. Know more about it on the website of Imperva.

Related Entries:

« Is AJAX The Page View Kil... | Main | Registration Now Open For... »

Permalink: Server Side Vulnerability Reported In AJAX

Tags: vulnerability Imperva Direct Web Reporting AJAX ajax vulnerability+reported

Vote for Server Side Vulnerability Reported In AJAX:

Currently 9.00/10
1
2
3
4
5
6
7
8
9
10

Rating: 9.00 out of 3 vote(s) cast.

Response from: Joe Walker (01/05/07 7:12am)

A fix has already been released for this.
http://getahead.ltd.uk/blog/joe/2007/01/04/new_dwr_releases.html

Add your response to Server Side Vulnerability Reported In AJAX:

Name: *

Email: (will never be shown)*

URL:

(* marked fields are required)

Notify me if more comments appear?

Subscribe to Java Entrepreneur newsletter? (Newsletters are sent out weekly).

Remember me

Security Code: *
(Please help us to sort out spam.)

Please enter your comment here: (Sorry, no HTML is allowed - URLs will be made clickable automatically if you add http:// to your URL.)

We welcome your comments, however all comments are moderated. Offensive or off-topic comments will be deleted and not displayed.

Share It

RSS
Google
Yahoo!
Addthis
Bloglines
Twitter	Follow us on Twitter!

Tagcloud

All contents are protected by copyright. | Terms of Use | Privacy Policy | Contact Us