Showing 26 - 29 of 29

Files from Amit Klein

msowa55.txt: Posted Aug 12, 2004; Authored by Amit Klein | Site sanctuminc.com; Microsoft Outlook Web Access (OWA) for Exchange 5.5 is vulnerable to an HTTP Response Splitting attack.; tags | advisory, web; SHA-256 | 40c728ecca4485d726b9dc1ed87d1cda4fe98dbe5ad4a766a323e40abecdbb28; Download | Favorite | View

Blind_XPath_Injection_20040518.pdf: Posted May 20, 2004; Authored by Amit Klein | Site sanctuminc.com; This paper describes a Blind XPath Injection attack that enables an attacker to extract a complete XML document used for XPath querying, without prior knowledge of the XPath query.; tags | paper; SHA-256 | 007c04289ec7cfd707f78efcc1903cb5ebf8636ba697af09bdef3416f86c5cbb; Download | Favorite | View

soapy.txt: Posted Mar 17, 2004; Authored by Amit Klein | Site SanctumInc.com; Multiple vendors suffer from a denial of service vulnerability in their SOAP servers. Products affected: Macromedia ColdFusion/MX 6.0 and 6.1, ColdFusion/MX 6.0 and 6.1 J2EE, all editions of Macromedia JRun 4.0, and Sun Java System Application Server 7 Update 2 Upgrade and prior releases.; tags | advisory, java, denial of service; SHA-256 | edfd88863f29ed6adcb5fa19d6baa42407918c5ba0a3e4f0296be2a21ea83fbd; Download | Favorite | View

Divide and Conquer - HTTP Response Splitting Whitepaper: Posted Mar 4, 2004; Authored by Amit Klein; Divide and Conquer - HTTP Response Splitting, Web Cache Poisoning Attacks, and Related Topics. This whitepaper discusses a new application attack technique and provides use cases.; tags | paper, web; SHA-256 | 0420aad9f75035ecdf188c7e10019360d9264c46f6a33e7d3e787c9c0bd4f2c0; Download | Favorite | View

Page 2 of 2 Back 1 2 Next

Top Authors In Last 30 Days