[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] <img src=> aint working

From: "Esteban RibiÄiÄ" <kisero@xxxxxxxxx>
Subject: [WEB SECURITY] <img src=> aint working
Date: Tue, 10 Jul 2007 14:14:06 +0200

------=_Part_180371_16182168.1184069646462
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

hello list,

i'm trying this html on a domain (lets say www.x.net):

<html>
<body>
<img src="http://test.x.net/alert.html<http://test.x.net/xmlhttprequest/alert.html>
">
</body>
</html>

were alert.html contains any javascript , lets say:

<html>
<body>
hello
<script>
window.alert()
</script>
</body>
</html>

Everytime i browse www.x.net i cant get the aler to work. On the logs i
first saw a 304 error , after "touch" the alert.html script i get the 200
but still no alert...if i hit directly the alert.html of course works.

what is missing? i dont understand what is going on...the browser must be
doing something to prevent this to happen (IE6) as domains are different? (i
reallly dont think so..but)

any help, much apreciated.
thanks!

------=_Part_180371_16182168.1184069646462
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

<div>hello list,</div>
<div>&nbsp;</div>
<div>i&#39;m trying this html on a domain (lets say <a href="http://www.x.net";>www.x.net</a>):</div>
<div>&nbsp;</div>
<div>&lt;html&gt;<br>&lt;body&gt;<br>&lt;img src=&quot;<a href="http://test.x.net/xmlhttprequest/alert.html";>http://test.x.net/alert.html</a>&quot;&gt;<br>&lt;/body&gt;<br>&lt;/html&gt;<br>&nbsp;</div>
<div>were alert.html contains any javascript , lets say:</div>
<div>&nbsp;</div>
<div>&lt;html&gt;<br>&lt;body&gt;<br>hello<br>&lt;script&gt;<br>window.alert()<br>&lt;/script&gt;<br>&lt;/body&gt;<br>&lt;/html&gt;<br>&nbsp;</div>
<div>Everytime&nbsp;i browse <a href="http://www.x.net";>www.x.net</a> i cant get the aler to work. On the logs i first saw a 304 error , after &quot;touch&quot; the alert.html script i get the 200 but still no alert...if i hit directly the 
alert.html of course works.</div>
<div>&nbsp;</div>
<div>what is missing?&nbsp;i dont understand what is going on...the browser must be doing something to prevent this to happen (IE6) as domains are different? (i reallly dont think so..but)</div>
<div>&nbsp;</div>
<div>any help, much apreciated.</div>
<div>thanks!</div>
<div>&nbsp;</div>
<div>&nbsp;</div>

------=_Part_180371_16182168.1184069646462--

Prev by Date: RE: [WEB SECURITY] Session hijacking protection
Next by Date: Re: [WEB SECURITY] Attacking Password Recovery Facilities
Previous by thread: [WEB SECURITY] XWW - cross webmail Worn - PoC
Next by thread: RE: [WEB SECURITY] <img src=> aint working
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site