Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web A

from [Thomas Schreiber] Network Security [Permanent Link]
Subject: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications"
Date: Thu, 16 Dec 2004 02:13:32 +0100 
Hello,

I would like to point you to a whitepaper just released:

SESSION RIDING - A Widespread Vulnerability in Today's Web Applications
http://www.securenet.de/papers/Session_Riding.pdf

----------
Abstract:

In this paper we describe an issue that was raised in 2001 under the name of 
Cross-Site Request Forgeries (CSRF). It seems, though, that it has been 
neglected by the community, as it is not part of recent Web Application 
Security discussions, nor is it mentioned in OWASP's Top Ten or the like. After 
having frequently observed this vulnerability in our Web Application Security 
assessments of custom Web applications, we started to examine various public 
Web applications and other browser-based applications:

?       popular (commercial) Web sites 
?       popular browser-based console applications such as administration tools 
for databases, servers, etc.
?       browser-based administration clients of hardware devices
?       webmail sites and open source and commercial webmail solutions 

We have found out that this vulnerability is present in many of those sites, 
services and products, some of which perform sensitive tasks. Actually, the 
list of affected companies contains well-known big players. Our analysis has 
led us to the conclusion that this vulnerability is the most widespread one in 
today's Web applications right after Cross-Site Scripting (XSS). Even worse, in 
some scenarios it has to be considered much more dangerous than XSS.

We feel that a concise description of this issue is necessary, along with a 
description of scenarios that highlight the danger to all browser-based 
applications that do not provide appropriate countermeasures, be it Intranet, 
Internet or console applications. In this paper, we explain this vulnerability 
in depth, show that it may be used unnoticed by the victim, describe potential 
threats, and finally give hints on how to make Web applications safe from such 
attacks.

We prefer to call this issue Session Riding which more figuratively illustrates 
what is going on.
----------

Feedback is very welcome - especially regarding our rating/experience as one of 
the most widespread vulnerabilities today. 

Thomas Schreiber
____________________________________________________________
SecureNet GmbH - http://www.securenet.de
+49 89/32133-610
mailto:ts@securenet.de
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  OWASP NYC Chapter Meeting, Stan Guzik
Next by Date:  Is this exploitable?.., Benjamin Livshits
Previous by Thread:  OWASP NYC Chapter Meeting, Stan Guzik
Next by Thread:  Re: Whitepaper "SESSION RIDING - A Widespread Vulnerability in Today's Web Applications", Philippe P.
Indexes:  [Date] [Thread] [Top] [All Lists]