Browse by Tags

All Tags » XSS (RSS)

Maybe Socket Bug in Policy Code in Silverlight 2 beta 1 by Michael Schwarz

In my last post I wrote about how you can use sockets in Silverlight 2 beta 1 . Well, when publishing my application to a Internet domain the code didn't work. I always get a socket exception: error code 10013, access denied. I have put an example online...
Filed under: , , ,

Trackbacks, Who Is Linking You and where you should pay attention by Michael Schwarz

Today I opened the turkish version of Google and did a search for something I cannot remember. The thing was that I didn't hit enter, instead I clicked on the button Google'da Ara . What I noticed then was that the ' was not correct url encoded...

JSON Hijacking and How Ajax.NET Professional (AjaxPro) Avoids these Attacks by Michael Schwarz

There are a couple of web sites reporting about security issues that hackers can use to invoke AJAX methods or use the JSON output to get data from other web applications. Specificallly, these attacks use HTTP GET requests invoked via an HTML <script...

How to surf the Internet more safely by Michael Schwarz

In the past you may have heared about more and more security bugs on well-known web sites you use maybe more often a day. Below there are some tips you should have in mind when browsing: Don't use feautres like " save user credentials on this...
Filed under: , , , , ,

How do I hack a web site? by Michael Schwarz

On next Tuesday I will talk at the .NET User Group in Munich / Germany about following topics: Ongoing talk about Yahoo! UI experience with Dom.js, Element.js and Event.js and the YUI-EXT components A short introduction about WPF/E (how to use WPF/E as...

Pending Members - Google Groups XSS Bug [Part 1] by Michael Schwarz

During the weekend I found an script error on the Google pending members web page. Because I was using the new Google groups beta interface I didn't looked on it. But today the script error still occurs and I noticed the same error on the older version...
Filed under: , , ,
More Posts