Top 10 Web app vulnerabilities

I would have expected better from Sun. They crippled Java's applet technology (IMHO) with the "sandbox" to provide security; surely they can secure their enterprise solutions more effectively :confused:
 
Multiple Symantec Products Script Injection Vulnerabilities: Multiple Symantec products are prone to multiple script-injection vulnerabilities because the applications fail to properly sanitize user-supplied input before using it in dynamically generated content.
Click to expand...

What a surprise...
 
Symantec distributes some pretty awesome computer-disabling software, notably Norton Antivirus...
 
Kaufies said:
I would have expected better from Sun. They crippled Java's applet technology (IMHO) with the "sandbox" to provide security; surely they can secure their enterprise solutions more effectively :confused:
Click to expand...

Crippled? If you give it permission I can modify your boot sector. Applet's are not crippled at all. But it takes a bit more to get it to do priveleged operations.

The apache forms vulnrability is rather dumb though. I agree it's a mistake giving different responses. But first youre going to bruteforce usernames, then passwords. Better off intercepting ssl imo.
 
_TrXtR_ said:
Crippled? If you give it permission I can modify your boot sector. Applet's are not crippled at all. But it takes a bit more to get it to do priveleged operations.
Click to expand...

Forgive my n00bness, I found the sandbox highly irritating as a new developer. Every where I looked there were security exceptions:o
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X