November 2011
Intermediate to advanced
320 pages
10h 18m
English
The problems outlined in this section are an unavoidable circumstance of doing business on the Internet and must be properly accounted for when designing or implementing new web apps.
The possibility of long-term pollution of the browser cache (or any interim proxies) with a fabricated, malicious version of the targeted web application. Encrypted web applications may be targeted due to response-splitting vulnerabilities. For nonencrypted traffic, active network attackers may be able to modify the responses received by the requestor, too.
See Chapter 3 for an overview of HTTP-caching behaviors.
The possibility of framing or otherwise decorating or obscuring a portion of ...
Read now
Unlock full access