HTTP Response Splitting in ASP.NET 2.0

Are applications built on ASP.NET 2.0 still vulnerable to "HTTP response
splitting" attacks inspite of enableheaderschecking, request validation and
CR/LF checks in response.redirect?

If vulnerability does exist, what are the additional things that the
developers need to take care themselves in order to protect their sites from
response splitting attacks.
Vikram Sinha [ Di, 28 November 2006 08:13 ] [ ID #1550248 ]
Webserver » microsoft.public.inetserver.iis.security » HTTP Response Splitting in ASP.NET 2.0

Vorheriges Thema: Error 403
Nächstes Thema: Seeking setup advice on SSL and Certificates for W2k3

[ Startseite ] [ Administrator ] [ Suche ] [ Hinweise ] [ Impressum ]

Powered by FudForum