vulnwatch
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[VulnWatch] Cross Domain XMLHttpRequest

from [Michal Majchrowicz] [Permanent Link][Original]
To: vulnwatch@vulnwatch.org, vulndiscuss@vulnwatch.org, bugtraq@securityfocus.com, full-disclosure@lists.grok.org.uk
Subject: [VulnWatch] Cross Domain XMLHttpRequest
From: "Michal Majchrowicz" <m.majchrowicz@gmail.com>
Date: Sun, 15 Apr 2007 21:14:43 +0200
Delivered-to: sp-com-lists@consult.net
Delivered-to: vulnwatch-list@securepoint.com
Delivered-to: mailing list vulnwatch@vulnwatch.org
Delivered-to: moderator for vulnwatch@vulnwatch.org
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition:x-google-sender-auth; b=QfMcbsKBbGE2gJnmHgExn7ni5qtjwotY+dZP+vB5vttC/kl3ZHhUxRGqT3COvxskr1sS8uotABmQboOn9L3ljlfrKrZPB2AmgTOBaF57vJLYyb8rgaaowF9poOrxKEKrqabuEiRtuvtxEusBKAqwAaoiew373Sm19Umrj67kxOI=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition:x-google-sender-auth; b=FAuUK9r0b7fxHz7NSwR1h3dK8PFb85tGAzZ9GrgsjhYrpnk4K4Ux7hwZbOPxBzwa9yLNqe+rrKBC8y4LlDpvcgX/vkbWildSXWVVAoV3IvbSVfq8c6o0qLx/baXKYDq8flZfZ5lQCkdqsZ4tIkM23ZrSAhh+uo4ntCYzn7/v4W4=
List-help: <mailto:vulnwatch-help@vulnwatch.org>
List-post: <mailto:vulnwatch@vulnwatch.org>
List-subscribe: <mailto:vulnwatch-subscribe@vulnwatch.org>
List-unsubscribe: <mailto:vulnwatch-unsubscribe@vulnwatch.org>
Mailing-list: contact vulnwatch-help@vulnwatch.org; run by ezmlm
Sender: mmajchrowicz@gmail.com 
Due to "security reasons" many Web Browsers doesn't allow cross
domain XMLHttpRequests. In fact this is only troublesome for web
developers and not for virus coders/crackers/etc. Some time ago there
was presetened a technic which used cssText property to perform some
cross domain requests. After some research I was able to create an
object that has some part of original XMLHttpRequests functionality
and allows Cross Domain requests. In conclusion Web Browers
Developpers should allow some limited cross domain XMLHttpRequests. My
implementation (MyXMLHttpRequest) uses script tag but it is possible
to use different ones (for instance style). It was tested on all
modern web browsers.
PoC: http://sectroyer.110mb.com/
It uses both XMLHttpRequest and MyXMLHttpRequests.
Michal Majchrowicz.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • [VulnWatch] Cross Domain XMLHttpRequest, Michal Majchrowicz <=
Previous by Date:  iDefense Security Advisory 04.12.07: Hewlett Packard HP-UX Remote pfs_mountd.rpc Buffer Overflow Vulnerability, iDefense Labs
Next by Date:  [VulnWatch] iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability, iDefense Labs
Previous by Thread:  iDefense Security Advisory 04.12.07: Hewlett Packard HP-UX Remote pfs_mountd.rpc Buffer Overflow Vulnerability, iDefense Labs
Next by Thread:  [VulnWatch] iDefense Security Advisory 04.16.07: Akamai Download Manager ActiveX Stack Buffer Overflow Vulnerability, iDefense Labs
Indexes:  [Date] [Thread] [Top] [All Lists]