Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions

Prev | Current Page 202 | Next

Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos

"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"

x and IE6
var xmlHttp = new ActiveXObject("Microsoft.XMLHTTP");
}
}
function updatePage() {
if (xmlHttp.readyState == 4) {
if (request.status == 200) {
var response = xmlHttp.responseText;
}
}
}
xmlHttp.open("GET",
"http://labs.isecpartners.com/HackingExposedWeb20/isecpartners.htm);
xmlHttp.onreadystatechange = updatePage;
alert(xmlHttp.send());

iSEC Partners

While the intention of the user was simply to visit XHR.htm, but via XHR, the web
page was able to force the user to visit isecpartners.htm without the user??™s knowledge or
permission. Next, labs.isecpartners.com/HackingExposedWeb20/XHR.htm is not an
AJAX application; it is a static web page that calls an AJAX function in the browser (as
noted by the boldface lines). Hence, the ability to execute the GET via XHR is supported
by Internet Explorer, Safari, and Firefox, not by the web server on the remote site.
106 Hacking Exposed Web 2.0
This introduces a low barrier to entry for attackers trying to exploit XHR functionality on
modern web browsers. Figure 4-10 exposes a sniffed program that shows the initial request
to labs.isecpartners.com/HackingExposedWeb20/XHR.htm on line 6 and then the automatic
XHR to labs.

Pages:
190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214

After the Rain : how the West lost the East (page 288) A History of Indian Philosophy, Volume 1 (page 822) The Adventures of Tom Sawyer, Part 3. (page 21)

Books for you

Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos

"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"