[OWASP-Bangalore] Cross-Site History Manipulation (XSHM)

Sharma, Anil Anil.Sharma at fiserv.com
Tue Feb 2 11:43:20 EST 2010


Checkmarx Research Labs has identified a new critical vulnerability in
Internet Explorer (other browsers are probably exposed the same way) that
would allow hackers to easily compromise web applications. Cross-Site
History Manipulation (XSHM) is a newly discovered zero-day attack: attackers
may have been using it for a long time, but the application and security
communities do not know it.




Thanks & Regards,
Anil Sharma
System Analyst - Application Security,RIM
Fiserv Global Services

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-bangalore/attachments/20100202/3b93e5f7/attachment.html 


More information about the OWASP-Bangalore mailing list