[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Bypassing script filters with variable-width encodings

From: "Chris Weber" <chris@xxxxxxxxxxx>
Subject: [WEB SECURITY] Bypassing script filters with variable-width encodings
Date: Fri, 11 Aug 2006 14:31:18 -0700

------=_NextPart_000_0136_01C6BD52.D247B300
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit

Everyone see this?  Nothing new but a nice browser comparison.
 <http://applesoup.googlepages.com/bypass_filter.txt>
http://applesoup.googlepages.com/bypass_filter.txt
 
 
 

------=_NextPart_000_0136_01C6BD52.D247B300
Content-Type: text/html;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dus-ascii">
<META content=3D"MSHTML 6.00.2900.2963" name=3DGENERATOR></HEAD>
<BODY>
<DIV><FONT face=3DArial size=3D2><SPAN =
class=3D626112621-11082006>Everyone see=20
this?&nbsp; Nothing new but a nice browser =
comparison.</SPAN></FONT></DIV>
<DIV><A =
href=3D"http://applesoup.googlepages.com/bypass_filter.txt";><FONT=20
face=3DArial><FONT=20
size=3D2>http://applesoup.googlepages.com/bypass_filter.txt</FONT></FONT>=
</A></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV></BODY></HTML>

------=_NextPart_000_0136_01C6BD52.D247B300--

Prev by Date: Re: [WEB SECURITY] Secure coding guidelines
Next by Date: RE: [WEB SECURITY] Article about HttpOnly
Previous by thread: [WEB SECURITY] Web app ? : Lieberman's site
Next by thread: [WEB SECURITY] Re: [Full-disclosure] Re: [WEB SECURITY] Top sites for Application security news
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site