WebApp Sec mailing list archives
Universal PDF XSS Remediation (Fix)
From: "Cyrill Brunschwiler" <cyrill.brunschwiler () csnc ch>
Date: Mon, 12 Feb 2007 08:41:23 +0100
##################################################################### # # Subject: Universal PDF XSS # Author: Cyrill Brunschwiler (cyrill.brunschwiler () csnc ch) # Date: Februar 9th, 2007 # ##################################################################### Dear reader Compass worked out an advanced technical paper which explains the recently identified Adobe Acrobat Plug-in vulnerability. The document highlights the numerous useless remediation trials. Furthermore, you will experience why even the Open Web Application Security Project (OWASP) proposed solution seldom meets the requested security requirements. The full featured report is prepared for download at... http://www.csnc.ch/ (Anti-PDF-XSS Actions 9. Februar 2007) Best regards Your Compass Security Team ------------------------------------------------------------------------- Sponsored by: Watchfire Cross-Site Scripting (XSS) is one of the most common application-level attacks that hackers use to sneak into web applications today. This whitepaper will discuss how traditional XSS attacks are performed, how to secure your site against these attacks and check if your site is protected. Cross-Site Scripting Explained - Download this whitepaper today! https://www.watchfire.com/securearea/whitepapers.aspx?id=701500000008fHA --------------------------------------------------------------------------
Current thread:
- Universal PDF XSS Remediation (Fix) Cyrill Brunschwiler (Feb 12)
- Re: Universal PDF XSS Remediation (Fix) Amit Klein (Feb 13)
- RE: Universal PDF XSS Remediation (Fix) Cyrill Brunschwiler (Feb 14)
- Re: Universal PDF XSS Remediation (Fix) Amit Klein (Feb 14)
- Re: Universal PDF XSS Remediation (Fix) Amit Klein (Feb 15)
- Re: Universal PDF XSS Remediation (Fix) Tim Brown (Feb 20)
- RE: Universal PDF XSS Remediation (Fix) Cyrill Brunschwiler (Feb 14)
- Re: Universal PDF XSS Remediation (Fix) Amit Klein (Feb 13)
- Re: Universal PDF XSS Remediation (Fix) Ivan Ristic (Feb 13)
- Message not available
- RE: Universal PDF XSS Remediation (Fix) Cyrill Brunschwiler (Feb 14)