Web Application Worms

Myth or reality? This paper at imperva.com shows how relatively simple techniques can be used to automatically find and attack vulnerable application servers. Looks plausible enough to me.

You’ve been warned: use a serious framework for your next project ;-)

This entry was posted on Wednesday, March 31st, 2004 at 8:00 am and is filed under The Web. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

One Response to Web Application Worms

Sylvain Wallez says:

March 31, 2004 at 2:53 pm

Well, even if Cocoon doesn’t have some of the wide-open holes that some systems have, protecting from SQL injection is not built into the framework and requires careful inspection of direct transmission of request parameters to SQL queries…

Anyway, thanks for the pointers, this is an interesting read!

ls /var/categories

head -7 < twitter

@MaineC @DivaDanese @andrew_randall @teemow @campusparty @foocamp "geek-proof WiFi" 2 days ago

RT @iamamoose: Up to much this weekend? You could always update your resume and apply for a job at the Apache Software Foundation handling… 6 days ago

@blackjack75 I gave up and bought a very basic $80 HP printer that does nothing else. The nice thing: it works. 6 days ago

@elecharny @CedricChampeau Oui, le mieux c'est de chanter en public, après parler devient plus facile :-) 6 days ago

It took two years for my 2020 birthday present to materialize - fantastic Kraftwerk show yesterday in Geneva. I lov… twitter.com/i/web/status/1… 1 week ago

@MaineC @DmitryKan @FlaxSearch That first hybrid remote conference in March 2020 was a great experience, especially… twitter.com/i/web/status/1… 1 week ago

RT @iamamoose: The Apache Software Foundation are hiring for the security response team! blogs.apache.org/security/entry… @TheASF #asf 2 weeks ago

bertrand’s brain grep