tag:blogger.com,1999:blog-3792178847867987053.post2170804124815520540..comments2024-03-16T01:36:47.926-07:00Comments on Security Tools Benchmarking: Session Puzzling and Session Race ConditionsShay Chenhttp://www.blogger.com/profile/16490521389991462247noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-3792178847867987053.post-86995044436009046112012-01-04T09:50:11.903-08:002012-01-04T09:50:11.903-08:00Not in vain at all, Shay-Chen. When most eyes are ...Not in vain at all, Shay-Chen. When most eyes are on XSS, SQLi and CSRF, it's things like this, HTTP parameter pollution and, say, Insecure object mapping (http://carnal0wnage.attackresearch.com/2011/12/insecure-object-mapping.html) that fail to get enough attention and only few care to really think about. Such flaws are my favorite kind though: not really trivial to find but with potentially spectacular impact.Mitja Kolsekhttps://www.blogger.com/profile/00089863558178974677noreply@blogger.comtag:blogger.com,1999:blog-3792178847867987053.post-30796153623174714392012-01-04T03:59:34.777-08:002012-01-04T03:59:34.777-08:0010x man,
It feels great to know that the effort w...10x man, <br />It feels great to know that the effort was not in vain.<br /><br />Still curious about additional uses for the fascinating attack you presented in your latest lecture at the Source conference at Barcelona ("advanced binary planting")...<br />Will let you know if I find anything interesting.Shay Chenhttps://www.blogger.com/profile/16490521389991462247noreply@blogger.comtag:blogger.com,1999:blog-3792178847867987053.post-6955754064204005832012-01-04T02:16:05.889-08:002012-01-04T02:16:05.889-08:00Shay-Chen, you've done some excellent security...Shay-Chen, you've done some excellent security research here. Thank you for taking the time to explain it so well (I know that's a *lot* of time) and for setting up a demo application.<br /><br />BTW, if this concept alone seems hard to understand for some, imagine combining it with session fixation or session donation, and setting session variables in another user's session :)<br /><br />Thanks again, really well done!Mitja Kolsekhttps://www.blogger.com/profile/00089863558178974677noreply@blogger.com