[Owasp-delhi] Cross-Site History Manipulation (XSHM)

Sharma, Anil Anil.Sharma at fiserv.com
Tue Feb 2 11:36:21 EST 2010


Checkmarx Research Labs has identified a new critical vulnerability in
Internet Explorer (other browsers are probably exposed the same way) that
would allow hackers to easily compromise web applications. Cross-Site
History Manipulation (XSHM) is a newly discovered zero-day attack: attackers
may have been using it for a long time, but the application and security
communities do not know it.



Thanks & Regards,
Anil Sharma
System Analyst - Application Security
Fiserv Global Services


-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-delhi/attachments/20100202/a4c35b87/attachment-0001.html 


More information about the Owasp-delhi mailing list