Penetration Testing mailing list archives

Re: Injection attacks in ASPX/ASP.NET applications

From: "Morning Wood" <se_cur_ity () hotmail com>
Date: Sun, 31 Aug 2008 12:15:00 -0700

I should have been more clear, ASP / ASP.NET can be very insecure withoutproper implimentation

( which is found in about 80% od these types of instalations )

I have seen very secure sites when proper coding / filtering practices havebeen utilized.


( no need to start a war here )

cheers,

wood


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes inSecuring Web Applications

Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

Current thread:

Re: Injection attacks in ASPX/ASP.NET applications Serg B (Sep 02)
- <Possible follow-ups>
- Re: Injection attacks in ASPX/ASP.NET applications Morning Wood (Sep 02)
  - Re: Injection attacks in ASPX/ASP.NET applications Serg B (Sep 03)
- Re: Injection attacks in ASPX/ASP.NET applications Krugger (Sep 02)
- Re: Injection attacks in ASPX/ASP.NET applications David Howe (Sep 02)
- RE: Injection attacks in ASPX/ASP.NET applications Wong Yu Liang (Sep 02)
  - RE: Injection attacks in ASPX/ASP.NET applications Pennington, Coby (Sep 03)
  - Re: Injection attacks in ASPX/ASP.NET applications silky (Sep 03)
    - Re: Injection attacks in ASPX/ASP.NET applications Wagner Elias (Sep 04)
    - Re: Injection attacks in ASPX/ASP.NET applications Jorge L. Vazquez (Sep 04)
- Re: Injection attacks in ASPX/ASP.NET applications FF (Sep 02)
- Re: Injection attacks in ASPX/ASP.NET applications Marco Ivaldi (Sep 04)

(Thread continues...)